San Francisco, April 17: Cyber security representatives from the US and Britain have warned of Russian state-sponsored cyber-attacks that are targeting network infrastructure devices such as routers and firewalls, to compromise government and private sectors globally.

According to a US Computer Emergency Response Team (US-CERT), the Technical Alert (TA) provided information on the worldwide cyber exploitation of network infrastructure devices (routers, switches, firewalls, Network-based Intrusion Detection Systems) by Russian state-sponsored cyber actors.

The joint TA is the result of analytic efforts between the US Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), and the UK's National Cyber Security Centre, according to information on the official website of the DHS.

"Victims were identified through a coordinated series of actions between US and international partners. The report builds on previous DHS reporting and advisories from the UK, Australia and the European Union," the website said.

"The FBI has high confidence that Russian state-sponsored cyber actors are using compromised routers to conduct man-in-the-middle attacks to support espionage, extract intellectual property, maintain persistent access to victim networks, and potentially lay a foundation for future offensive operations," the website added.

Since 2015, the US government has been receiving information from multiple sources -- including private and public sector cyber security research organisations and allies -- that cyber actors were exploiting large numbers of enterprise-class and residential routers and switches worldwide.

The US government assessed that cyber actors supported by the Russian government carried out this worldwide campaign.

These operations enable espionage and intellectual property that supports the Russian Federation's national security and economic goals, the website said.

Russian cyber actors leverage a number of legacy or weak protocols and service ports associated with network administration activities.

Cyber actors use these weaknesses to identify vulnerable devices, extract device configurations, harvest login credentials, modify device firmware, and copy or redirect victim traffic through Russian cyber-actor-controlled infrastructure.

Organisations can use publicly available cyber security guidance and best practices from DHS, allied governments, vendors and the private-sector cyber security community on mitigation strategies for the exploitation vectors to safeguard their networks.

 

Let the Truth be known. If you read VB and like VB, please be a VB Supporter and Help us deliver the Truth to one and all.



Saharanpur, Apr 6 (PTI): An electricity department contract worker has been dismissed from service in this Uttar Pradesh district for allegedly waving a Palestine flag on Eid, officials said on Sunday.

The termination notice was issued after photographs of him waving the Palestine flag became circulated on social media.

Saqib Khan, who worked in the Kailashpur power house, waved the flag after Eid 'namaaz' on March 31, the officials said.

Electricity department executive engineer Sanjeev Kumar said the department deemed his action "anti-national" and promptly took steps.

"Saqib Khan, a contract worker in the Kailashpur power house, waved a flag of Palestine after offering 'namaaz' on Eid and posted of it a picture on social media," Kumar said.

"When the matter came to the department's notice, it was considered an anti-national activity and action was taken immediately. A letter was written to the contract company concerned and it was directed to remove Khan from service," he added.

The department has instructed the contract company to immediately terminate Khan's employment and confirm the action.

The incident follows action against eight individuals in the district who were also seen in a video waving Palestine flags and raising slogans.

The authorities are identifying other individuals involved based on widely-circulated footage and plan to initiate legal proceedings against them.

Superintendent of Police (City) Vyom Bindal had said on March 31, "A video has come to our notice through social media in which some youngsters are seen waving the flag of another country. The matter is being investigated, following which further action will be taken."

Vyom had said that, after offering 'namaaz' at the Ambala Road eidgah, some youngsters raised slogans while waving flags of another country that were promptly removed by police.