Security News > 2022 > January > US government urges organizations to prepare for Russian-sponsored cyber threats
Organizations need to be vigilant for such attacks and make sure they have the means to prevent or combat them.
"The advisory doesn't mention the current Russian-Ukraine tensions, but if the conflict escalates, you can expect Russian cyber threats to increase their operations," said Rick Holland, chief information security officer at Digital Shadows.
Confirm your processes for reporting a cyber incident and make sure there are no gaps among your IT staff for handling security threats.
Further, organizations should be aware of some of the tactics and targets used in Russian state-sponsored attacks.
"Russia has very advanced cyber warfare skills which keep them hidden once a network is compromised, although ironically, the initial attack vectors are typically those of low-tech email phishing campaigns, taking advantage of people reusing already compromised passwords or using easily guessed passwords," said Erich Kron, security awareness advocate at KnowBe4.
"To strengthen organizations against these attacks, it is critical that they have a comprehensive security awareness program in place to help users spot and report suspected phishing attacks and to educate them on good password hygiene," Kron added.
News URL
Related news
- US Government, Microsoft Aim to Disrupt Russian threat actor ‘Star Blizzard’ (source)
- US, UK warn of Russian APT29 hackers targeting Zimbra, TeamCity servers (source)
- US warns of last-minute Iranian and Russian election influence ops (source)
- Russian suspected Phobos ransomware admin extradited to US over $16M extortion (source)
- Faraway Russian hackers breached US organization via Wi-Fi (source)