More from CISA on Holiday Bear’s tactics. Efforts towards securing the US power grid.
The Ease of Tracking Mobile Phones of U.S. Soldiers in Hot Spots (WSJ) The armed forces are facing a challenge of how to protect personnel in an age when highly revealing data are being bought and sold in bulk, and available for purchase by America’s adversaries.
Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders (CISA) The Federal Bureau of Investigation (FBI), Department of Homeland Security (DHS), and Cybersecurity and Infrastructure Security Agency (CISA) assess Russian Foreign Intelligence Service (SVR) cyber actors—also known as Advanced Persistent Threat 29 (APT 29), the Dukes, CozyBear, and Yttrium—will continue to seek intelligence from U.S. and foreign entities through cyber exploitation, using a range of initial exploitation techniques that vary in sophistication, coupled with stealthy intrusion tradecraft within compromised networks.
Federal Agencies Detail Russian Tactics Used in Recent Cyber Intrusions (Nextgov.com) The FBI, Homeland Security Department and Cybersecurity and Infrastructure Security Agency issued an alert on Russian government cyber tradecraft and mitigation techniques for targets.
FBI, CISA Warn of Ongoing Russian Cyberthreats (Bank Info Security) The FBI and CISA are warning of continued cyberthreats stemming from Russia’s Foreign Intelligence Service, or SVR, which the Biden administration formally accused
CISA Calls for Emergency Actions: VPN Compromise Targets U.S. Defense Sector (ClearanceJobs) Ivanti’s Pulse Connect Secure VPN compromise puts at risk the U.S. defense industrial base and other executive branch agencies.
FBI-DHS-CISA Joint Advisory on Russian Foreign Intelligence Service Cyber Operations (Homeland Security Today) The Federal Bureau of Investigation (FBI), Department of Homeland Security, and CISA have released a Joint Cybersecurity Advisory (CSA) addressing Russian Foreign Intelligence Service (SVR) cyber actors—also known as Advanced Persistent Threat 29 (APT 29), the Dukes, CozyBear, and Yttrium—continued targeting of U.S and foreign entities.
US warns of Russian state hackers still targeting US, foreign orgs (BleepingComputer) The FBI, the US Department of…