《電子技術(shù)應(yīng)用》
您所在的位置:首頁 > 通信與網(wǎng)絡(luò) > 業(yè)界動態(tài) > 英美機(jī)構(gòu)指責(zé)俄羅斯軍事情報機(jī)構(gòu)從事“蠻力”網(wǎng)絡(luò)攻擊活動

英美機(jī)構(gòu)指責(zé)俄羅斯軍事情報機(jī)構(gòu)從事“蠻力”網(wǎng)絡(luò)攻擊活動

2021-07-10
來源: 網(wǎng)電空間戰(zhàn)
關(guān)鍵詞: 網(wǎng)絡(luò) 安全性

  多個組織聯(lián)合發(fā)布了一份建議,以提高網(wǎng)絡(luò)領(lǐng)域的安全性

  2021 年 7 月 1 日晚上 9:54

  據(jù)國際戰(zhàn)略研究所發(fā)布的信息稱,,美國當(dāng)局認(rèn)為俄羅斯的總參謀部 (GRU) 和某些下屬單位是進(jìn)攻性網(wǎng)絡(luò)和影響行動的主要參與者。

  英國國家網(wǎng)絡(luò)安全中心聯(lián)合發(fā)布了“俄羅斯 GRU 開展全球蠻力運(yùn)動以破壞企業(yè)和云環(huán)境”的咨詢報告,,敦促有關(guān)公司進(jìn)一步加強(qiáng)網(wǎng)絡(luò)防御,。

  在一份聲明中,,美國國家安全局 (NSA) 網(wǎng)絡(luò)安全主任羅布喬伊斯表示,,該活動“可能在全球范圍內(nèi)持續(xù)進(jìn)行”。

微信圖片_20210710094436.jpg

  已經(jīng)有多個機(jī)構(gòu)表示,,俄羅斯一直在對全球數(shù)百個組織進(jìn)行積極的網(wǎng)絡(luò)攻擊(圖片:PA),。

  蠻力攻擊涉及自動破解具有潛在密碼的網(wǎng)站,,直到黑客獲得訪問權(quán)限,,但該活動的具體目標(biāo)并未披露。

  美國國家安全局表示,,至少從 2019 年年中開始,,與 GRU 相關(guān)的特工就試圖使用 Kubernetes 闖入網(wǎng)絡(luò),,Kubernetes 是一種最初由谷歌開發(fā)的用于管理云服務(wù)的開源工具,。

  美國國家安全局表示,雖然“大量”企圖闖入的目標(biāo)是使用微軟 Office 365 云服務(wù)的組織,,但黑客也攻擊了其他云提供商和電子郵件服務(wù)器,。

  據(jù)美國的網(wǎng)絡(luò)監(jiān)控公司 Gigamon 的威脅分析師 Joe Slowik 表示,NSA 描述的蠻力方法和網(wǎng)絡(luò)內(nèi)部橫向移動在國家支持的黑客和犯罪勒索軟件團(tuán)伙中很常見,,這使得 GRU 能夠與其他參與者混為一談,。

  聯(lián)邦調(diào)查局和網(wǎng)絡(luò)安全與基礎(chǔ)設(shè)施安全局也加入了咨詢行列,。

  UK, US Agencies Accuse Russian Military Intelligence Of 'Brute Force' Cyber Campaign

  Multiple organisations have jointly published an advisory to promote greater security in the cyber domain.

  1st July 2021 at 9:54pm

  The US authorities consider Russia's Directorate of the General Staff (GRU) and certain subordinate units principle actors in offensive cyber and influence operations, according to the International Institute for Strategic Studies.

  The British National Cyber Security Centre jointly issued the advisory 'Russian GRU Conducting Global Brute Force Campaign to Compromise Enterprise and Cloud Environments' – urging companies to bolster their defences.

  In a statement, the US National Security Agency (NSA) Cybersecurity Director, Rob Joyce, said the campaign was “l(fā)ikely ongoing, on a global scale”.

  Russia have been conducting aggressive cyber attacks against hundred of organisations worldwide, multiple agencies have said (Picture: PA),。

  Brute force attacks involve the automated spraying of sites with potential passwords until hackers gain access, though specific targets of the campaign were not disclosed.

  The NSA says GRU-linked operatives have tried to break into networks using Kubernetes, an open-source tool originally developed by Google to manage cloud services, since at least mid-2019.

  While a “significant amount” of the attempted break-ins targeted organisations using Microsoft's Office 365 cloud services, the hackers went after other cloud providers and email servers as well, the NSA said.

  Joe Slowik, a threat analyst at the network-monitoring firm Gigamon, said the brute force method and lateral movement inside networks described by NSA are common among state-backed hackers and criminal ransomware gangs, allowing the GRU to blend in with other actors.

  The FBI and the Cybersecurity and Infrastructure Security Agency also joined the advisory.




電子技術(shù)圖片.png

本站內(nèi)容除特別聲明的原創(chuàng)文章之外,轉(zhuǎn)載內(nèi)容只為傳遞更多信息,,并不代表本網(wǎng)站贊同其觀點(diǎn),。轉(zhuǎn)載的所有的文章、圖片,、音/視頻文件等資料的版權(quán)歸版權(quán)所有權(quán)人所有,。本站采用的非本站原創(chuàng)文章及圖片等內(nèi)容無法一一聯(lián)系確認(rèn)版權(quán)者。如涉及作品內(nèi)容,、版權(quán)和其它問題,,請及時通過電子郵件或電話通知我們,以便迅速采取適當(dāng)措施,,避免給雙方造成不必要的經(jīng)濟(jì)損失,。聯(lián)系電話:010-82306118,;郵箱:[email protected],。