Government-backed Russian hackers are using compromised routers and other network infrastructure to conduct espionage and potentially lay the groundwork for future offensive cyber operations, UK and US authorities have warned. In a joint statement, the US Department of Homeland Security (DHS), Federal Bureau of Investigation (FBI) and the UK’s National Cyber Security Centre (NCSC) – said Kremlin-backed hackers are using exploits to carry out malicious attacks.
These attacks target government, the private sector and critical infrastructure, as well as the Internet Service Providers (ISPs) providing support to these sectors, with attacks across the globe on network infrastructure devices including routers, switches, firewalls, Network Intrusion Detection Systems (NIDS). The hackers are using compromised routers to conduct man-in-the-middle attacks to support cyber espionage, steal intellectual property and maintain persistent access in victim networks for use in additional campaigns.
Read more about the warning by UK and US authorities on ZDNet.