Five Eyes Warn Of Russian Cyber Attacks

The Five Eyes Intelligence Alliance, which is made up of agencies from the US, Britain, Australia, Canada and New Zealand, has said Russia could launch the attacks as a response to sanctions imposed following its invasion of Ukraine. It said the war could expose organisations everywhere to cyber crime.

Critical infrastructure organisations across Britain have been urged to ramp up their cyber security defences as they face a heightened risk of Russian state-sponsored cyber attacks. Organisations around  the world have also been warned of the potential threat of Russian cyberattacks.

According to the alert, "evolving intelligence" suggests hackers within the Russian government are seeking to engage in "malicious cyber activity" in response to the "unprecedented economic sanctions" imposed on Russia following its invasion of Ukraine. There is also concern that hackers are targeting critical infrastructure in countries that have provided “materiel support” to Ukrainian forces.

There are also risks posed by numerous cybercrime groups who have pledged their support to Russia. Some groups have also threatened to conduct cyber operations against countries and organisations providing materiel support to Ukraine, while other groups have conducted disruptive attacks against Ukrainian websites as well. 

Among the identified cyber crime groups that have aligned with the Russian government include Primitive Bear and Venomous Bear, which have been identified as cyber threat groups of Russian origin that have not previously been directly connected to the Russian government.

In response to the increased risk, the Five Eyes alert outlines a number of immediate actions critical infrastructure organisations can take to “prepare for and mitigate potential cyber threats”.

The British government minister responsible for cyber security, Steve Barclay, the told The Daily Telegraph newspaper  "Cyber attacks recognise no physical or geographical boundary and it has never been more important to plan and invest in cyber resilience." 

Speaking on Irish TV,  Pat Moran, Cybersecurity Leader at PwC said although there have been no significant cyber attacks to date, the situation is now extremely dangerous. "We have seen the Conti Russian criminal gang, who we know from the HSE attacks last year, have already gone public and said they will attack the critical infrastructure of any country who gets in the way of what Russia is trying to do... So this is quite a worrying area for the world." 

If these cyberattacks do take place, Moran said they will be focused on critical infrastructure. "The concentration will be on areas where organisations and individuals are depending on critical services - so some examples of that would be water, energy and transportation.. These are particular areas where Governments across the world are helping organisations to make sure their defence mechanisms are robust and resilient enough to sustain an attack." 

A recent PwC report on Economic Fraud & Crime reveals that almost half of businesses have reported experiencing fraud or financial crime over the last two years.

PwC surveyed 1,296 business leaders from across 53 countries and found that 70% of the organisations that experienced new incidents of fraud said it was as a result of Covid-19 disruptions. The survey shows that nearly two-thirds of tech, media and telecommunications businesses have experienced some form of fraud over the last two years - the highest incidence of any industry. The report also reveals a reveals a rise in supply chain fraud.

According to the findings, larger companies are at greater risk for fraud, with nearly 20% of such companies experiencing fraud costing over $50 million. In this year's survey results, cyber crime came in ahead of customer fraud, the most common global crime in 2020, by a substantial margin.

PWC:      Reuters:   Bloomberg:     RTE:    Hacker News:    Independent:      Telegraph:     ZDNet:    

You Might Also Read: 

Cyber Criminals Volunteer For War In Ukraine:

 

« Improve Your Password Security
Predictive Analytics Are The Future For Cyber Security »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

baramundi software

baramundi software

baramundi software AG provides companies and organizations with efficient, secure, and cross-platform management of workstation environments.

Lakeside Software

Lakeside Software

Lakeside Software is how organizations with large, complex IT environments can finally get visibility across their entire digital estates and see how to do more with less.

FireMon

FireMon

FireMon is the only agile network security policy platform for firewalls and cloud security groups providing the fastest way to streamline network security policy management.

Certification Europe

Certification Europe

Certification Europe (now Amtivo Ireland) is an accredited certification body which provides ISO management system certification, including ISO 27001.

CommuniTake

CommuniTake

CommuniTake builds security, enablement, and management solutions to provide people and organizations with better, and more secure mobile device use.

Dispersive Networks

Dispersive Networks

Dispersive Virtual Network is a carrier-grade software-defined programmable network that is inspired by battlefield-proven wireless radio techniques.

HvS Consulting

HvS Consulting

HvS Consulting is a specialist information security company offering a full range of services including IT security architecture, ISO 27001 audits, Pentesting, Security monitoring and Training.

Wallarm

Wallarm

Wallarm is the only unified, best-in-class API Security and WAAP (Web App and API Protection) platform to protect your entire API and web application portfolio.

SYN Ventures

SYN Ventures

SYN Ventures invests in disruptive, transformational solutions that reduce technology risk.

Amazon Web Services (AWS)

Amazon Web Services (AWS)

Amazon Web Services is the world’s most comprehensive and broadly adopted cloud platform, offering fully featured services from data centers globally.

Vali Cyber

Vali Cyber

Vali Cyber was founded in 2020 with the mission of addressing the specific cybersecurity needs of Linux.

Boecore

Boecore

Boecore is an aerospace and defense engineering company that specializes in software solutions, systems engineering, cybersecurity, enterprise networks, and mission operations.

Strata Information Group (SIG)

Strata Information Group (SIG)

Strata Information Group (SIG) is a trusted partner in IT solutions and consulting services.

Benchmark IT Services (BITS)

Benchmark IT Services (BITS)

BITS is a leading cyber security company in Australia. Our certified professionals work with you to keep your data assets safe and secure.

Tech Data

Tech Data

Tech Data, a TD Synnex company, is a leading global distributor and solutions aggregator for the IT ecosystem.

Tyto Athene

Tyto Athene

At Tyto Athene, we harness the power of technology to provide solutions that shape the future.