On April 20, the Five Eyes nations – the United States, United Kingdom, Canada, Australia, and New Zealand – issued an updated warning about the increased potential of malicious cyber activity originating from Russia. According to the advisory, emerging intelligence indicates that the Russian government is exploring its options for cyberattacks. In recent days, Russian state-sponsored actors have launched distributed denial-of-service; previously Russia deployed destructive malware against Ukrainian government and critical infrastructure organizations.
The advisory also warns of increased activity from cybercrime groups that have publicly pledged support for the Russian government. These groups have threatened to conduct malicious cyber operations in retaliation for perceived threats against the Russian government or Russian people, to support Russian military operations, or to disrupt nations supporting Ukraine.
This advisory provides an overview of Russian state-sponsored advanced persistent threat groups, Russian-aligned cyber threat groups, and Russian-aligned cybercrime groups to help the cybersecurity community protect against possible cyber threats. The Five Eyes authorities strongly urge critical infrastructure network operators to prepare for and mitigate potential cyber threats.
Source:
