CISA, the FBI, and the NSA have released a joint Cybersecurity Advisory that provides an overview of Russian state-sponsored cyber operations, including commonly observed tactics, techniques, and procedures. The advisory also provides detection actions, incident response guidance, and mitigations. The agencies encourage the cybersecurity community—especially critical infrastructure network defenders—to adopt a heightened state of awareness, conduct proactive threat hunting, and implement the identified mitigations.
Source:
- Department of Homeland Security: CISA, FBI, and NSA Release Cybersecurity Advisory on Russian Cyber Threats to U.S. Critical Infrastructure