The National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) have released a joint cybersecurity alert for a new Russian malware dubbed Drovorub.
The National Security Agency (NSA) issued a new warning of Russian cyber actors exploiting an Exim Mail Transfer Agent (MTA) vulnerability CVE-2019-10149. The cyber attacks have been ongoing since last August.
Malicious cyber actors carried out by the Russian Government are targeting network infrastructure devices (e.g., routers, switches, firewalls, Network-based Intrusion Detection System (NIDS) devices).
Russian government cyber activity has targeted U.S Government entities, energy and other critical infrastructure sectors. The activity has been active since at least March 2016, according to a US-CERT Technical Alert (TA).
A new hacking group dubbed MoneyTaker has stolen allegedly millions of dollars from banking institutions from US, UK and Russia over the past year, according to researchers.
Hackers allegedly linked to Russian actor APT28 may be linked to a campaign targeting travelers in hotels in Europe and the Middle East, with activity dating back to July 2017.