Supplemental Info:
Earlier this afternoon, DHS, the FBI and UK National Cyber Security Center (NCSC) issued an unprecedented formal warning about "malicious cyber activity" by the Russian government. The joint technical alert sets out the threat to industry, warning that Russian state-sponsored actors are using "compromised routers" to conduct spoofing "man-in-the-middle" attacks to "support espionage, extract intellectual property, maintain persistent access to victim networks and potentially lay a foundation for future offensive operations".
The links below are primarily intended for business managers as well as network / system administrators.
GRIZZLY STEPPE - Russian Malicious Cyber Activity
NOTES: AlertsUSA subscribers are reminded that modern warfare extends far beyond that carried out on land, at sea, in the air and space. Through technological advancement and diffusion, operational environments now include the cyber and electromagnetic domains. In military parlance, this is collectively referred to as a multi-domain battlespace.
In plain English, what this means is that in addition to soldiers and artillery on the ground, fighter jets and bombers in the air, and ships and submarines at sea, determined adversaries can also target computer and telecommunications networks, power grids and many other areas of critical infrastructure.
These actions can come in the form of targeted hacking as well as through the spread of malware and viruses, including through your home and office computers.
While the broader protective actions taken to defend the nation are handled by government and industry, there are concrete steps you can take to help.
- Set strong passwords, change them regularly and don’t share them with anyone.
- Keep your operating system, browser and other critical software optimized by installing updates on your computer, your tablet and your smartphone.
- Maintain an open dialogue with your friends, family and colleagues about online safety and security. PARENTS: Keep on your kids about this. Teach them the importance of maintaining their online privacy and keeping protective software up to date.
- Use privacy settings and limit the amount of personal information you post online.
- Be cautious about online offers. If something sounds too good to be true, it probably is.
- Never open attachments in emails sent from unknown parties.
- Login directly and conduct inquiries on company websites, not through an email link. If you are still uncomfortable, call the company’s customer care line.
|