《电子技术应用》
您所在的位置:首页 > 通信与网络 > 业界动态 > 英美机构指责俄罗斯军事情报机构从事“蛮力”网络攻击活动

英美机构指责俄罗斯军事情报机构从事“蛮力”网络攻击活动

2021-07-10
来源: 网电空间战
关键词: 网络 安全性

  多个组织联合发布了一份建议,以提高网络领域的安全性

  2021 年 7 月 1 日晚上 9:54

  据国际战略研究所发布的信息称,美国当局认为俄罗斯的总参谋部 (GRU) 和某些下属单位是进攻性网络和影响行动的主要参与者。

  英国国家网络安全中心联合发布了“俄罗斯 GRU 开展全球蛮力运动以破坏企业和云环境”的咨询报告,敦促有关公司进一步加强网络防御。

  在一份声明中,美国国家安全局 (NSA) 网络安全主任罗布乔伊斯表示,该活动“可能在全球范围内持续进行”。

微信图片_20210710094436.jpg

  已经有多个机构表示,俄罗斯一直在对全球数百个组织进行积极的网络攻击(图片:PA)。

  蛮力攻击涉及自动破解具有潜在密码的网站,直到黑客获得访问权限,但该活动的具体目标并未披露。

  美国国家安全局表示,至少从 2019 年年中开始,与 GRU 相关的特工就试图使用 Kubernetes 闯入网络,Kubernetes 是一种最初由谷歌开发的用于管理云服务的开源工具。

  美国国家安全局表示,虽然“大量”企图闯入的目标是使用微软 Office 365 云服务的组织,但黑客也攻击了其他云提供商和电子邮件服务器。

  据美国的网络监控公司 Gigamon 的威胁分析师 Joe Slowik 表示,NSA 描述的蛮力方法和网络内部横向移动在国家支持的黑客和犯罪勒索软件团伙中很常见,这使得 GRU 能够与其他参与者混为一谈。

  联邦调查局和网络安全与基础设施安全局也加入了咨询行列。

  UK, US Agencies Accuse Russian Military Intelligence Of 'Brute Force' Cyber Campaign

  Multiple organisations have jointly published an advisory to promote greater security in the cyber domain.

  1st July 2021 at 9:54pm

  The US authorities consider Russia's Directorate of the General Staff (GRU) and certain subordinate units principle actors in offensive cyber and influence operations, according to the International Institute for Strategic Studies.

  The British National Cyber Security Centre jointly issued the advisory 'Russian GRU Conducting Global Brute Force Campaign to Compromise Enterprise and Cloud Environments' – urging companies to bolster their defences.

  In a statement, the US National Security Agency (NSA) Cybersecurity Director, Rob Joyce, said the campaign was “likely ongoing, on a global scale”.

  Russia have been conducting aggressive cyber attacks against hundred of organisations worldwide, multiple agencies have said (Picture: PA)。

  Brute force attacks involve the automated spraying of sites with potential passwords until hackers gain access, though specific targets of the campaign were not disclosed.

  The NSA says GRU-linked operatives have tried to break into networks using Kubernetes, an open-source tool originally developed by Google to manage cloud services, since at least mid-2019.

  While a “significant amount” of the attempted break-ins targeted organisations using Microsoft's Office 365 cloud services, the hackers went after other cloud providers and email servers as well, the NSA said.

  Joe Slowik, a threat analyst at the network-monitoring firm Gigamon, said the brute force method and lateral movement inside networks described by NSA are common among state-backed hackers and criminal ransomware gangs, allowing the GRU to blend in with other actors.

  The FBI and the Cybersecurity and Infrastructure Security Agency also joined the advisory.




电子技术图片.png

本站内容除特别声明的原创文章之外,转载内容只为传递更多信息,并不代表本网站赞同其观点。转载的所有的文章、图片、音/视频文件等资料的版权归版权所有权人所有。本站采用的非本站原创文章及图片等内容无法一一联系确认版权者。如涉及作品内容、版权和其它问题,请及时通过电子邮件或电话通知我们,以便迅速采取适当措施,避免给双方造成不必要的经济损失。联系电话:010-82306118;邮箱:aet@chinaaet.com。