Russian government hackers are leveraging unpatched software vulnerabilities to target specific organizations like governmental bodies and defense contractors, increasing overall cybersecurity risks.
The advisory highlights that SVR attackers can exploit software vulnerabilities for initial access and lateral movement within networks, illustrating their advanced capabilities.
SVR's targeting strategy involves 'targets of intent' for intelligence gathering and 'targets of opportunity' for mass exploitation of weaknesses in accessible systems.
The National Cyber Security Centre emphasizes mass scanning and exploitation as a method that broadens the threat landscape to nearly all organizations with vulnerabilities.
Collection
[
|
...
]