DHS, FBI Release Information on Critical Infrastructure Cyber Threats
Thursday, October 26, 2017 | Comments

The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) released a joint technical alert (TA) with information on advanced persistent threat (APT) actions targeting government entities and organizations in the energy, nuclear, water, aviation and critical manufacturing sectors.

Working with U.S. and international partners, DHS and FBI identified victims in these sectors. The report, the result of analytic efforts between the two entities, contains indicators of compromise (IOCs) and technical details on the tactics, techniques and procedures (TTPs) used by APT actors on compromised victims’ networks.

DHS assesses this activity as a multistage intrusion campaign by threat actors targeting low security and small networks to gain access and move laterally to networks of major, high-value asset owners within the energy sector. Based on malware analysis and observed IOCs, DHS has confidence that this campaign is still ongoing, and threat actors are actively pursuing their ultimate objectives over a long-term campaign. The intent of this product is to educate network defenders and enable them to identify and reduce exposure to malicious activity.

The full TA is here.

Post a comment
Name: *
Email: *
Title: *
Comment: *


No Comments Submitted Yet

Be the first by using the form above to submit a comment!

Site Navigation