Five Eyes Warn Of Russian Cyber Attacks

The Five Eyes Intelligence Alliance, which is made up of agencies from the US, Britain, Australia, Canada and New Zealand, has said Russia could launch the attacks as a response to sanctions imposed following its invasion of Ukraine. It said the war could expose organisations everywhere to cyber crime.

Critical infrastructure organisations across Britain have been urged to ramp up their cyber security defences as they face a heightened risk of Russian state-sponsored cyber attacks. Organisations around  the world have also been warned of the potential threat of Russian cyberattacks.

According to the alert, "evolving intelligence" suggests hackers within the Russian government are seeking to engage in "malicious cyber activity" in response to the "unprecedented economic sanctions" imposed on Russia following its invasion of Ukraine. There is also concern that hackers are targeting critical infrastructure in countries that have provided “materiel support” to Ukrainian forces.

There are also risks posed by numerous cybercrime groups who have pledged their support to Russia. Some groups have also threatened to conduct cyber operations against countries and organisations providing materiel support to Ukraine, while other groups have conducted disruptive attacks against Ukrainian websites as well. 

Among the identified cyber crime groups that have aligned with the Russian government include Primitive Bear and Venomous Bear, which have been identified as cyber threat groups of Russian origin that have not previously been directly connected to the Russian government.

In response to the increased risk, the Five Eyes alert outlines a number of immediate actions critical infrastructure organisations can take to “prepare for and mitigate potential cyber threats”.

The British government minister responsible for cyber security, Steve Barclay, the told The Daily Telegraph newspaper  "Cyber attacks recognise no physical or geographical boundary and it has never been more important to plan and invest in cyber resilience." 

Speaking on Irish TV,  Pat Moran, Cybersecurity Leader at PwC said although there have been no significant cyber attacks to date, the situation is now extremely dangerous. "We have seen the Conti Russian criminal gang, who we know from the HSE attacks last year, have already gone public and said they will attack the critical infrastructure of any country who gets in the way of what Russia is trying to do... So this is quite a worrying area for the world." 

If these cyberattacks do take place, Moran said they will be focused on critical infrastructure. "The concentration will be on areas where organisations and individuals are depending on critical services - so some examples of that would be water, energy and transportation.. These are particular areas where Governments across the world are helping organisations to make sure their defence mechanisms are robust and resilient enough to sustain an attack." 

A recent PwC report on Economic Fraud & Crime reveals that almost half of businesses have reported experiencing fraud or financial crime over the last two years.

PwC surveyed 1,296 business leaders from across 53 countries and found that 70% of the organisations that experienced new incidents of fraud said it was as a result of Covid-19 disruptions. The survey shows that nearly two-thirds of tech, media and telecommunications businesses have experienced some form of fraud over the last two years - the highest incidence of any industry. The report also reveals a reveals a rise in supply chain fraud.

According to the findings, larger companies are at greater risk for fraud, with nearly 20% of such companies experiencing fraud costing over $50 million. In this year's survey results, cyber crime came in ahead of customer fraud, the most common global crime in 2020, by a substantial margin.

PWC:      Reuters:   Bloomberg:     RTE:    Hacker News:    Independent:      Telegraph:     ZDNet:    

You Might Also Read: 

Cyber Criminals Volunteer For War In Ukraine:

 

« Improve Your Password Security
Predictive Analytics Are The Future For Cyber Security »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

Satisnet

Satisnet

Satisnet is a leading Security Reseller, Managed Security Services Provider (MSSP) and Cyber Training Innovator, with operations throughout the UK, EMEA and United States.

Owl Cyber Defense

Owl Cyber Defense

Owl patented DualDiode Technology enables hardware-enforced network segmentation and deterministic, one-way transfer of all data types and file sizes.

HackCon Norway

HackCon Norway

HackCon is for the people who are interested in technology, psychology, IT and security, and who wants to improve their knowledge within these areas.

Telecommunications & Digital Government Regulatory Authority (TDRA) - UAE

Telecommunications & Digital Government Regulatory Authority (TDRA) - UAE

TDRA focuses on regulating the telecommunications sector and enabling government entities in the field of smart transformation. It is responsible for the overall digital infrastructure in the UAE.

DeuZert

DeuZert

DeuZert is an accredited German certification body in accordance with ISO/IEC 27001 (Information Security Management).

eResilience

eResilience

eResilience is a division of Referentia Systems, a pioneer in an ultra-secure information safeguarding technique known as “Enclaving”, in which data can be segmented and protected within a network.

BigPanda

BigPanda

BigPanda is the first provider of Autonomous Operations solutions that empower IT Operations at large, complex enterprises.

Eureka Technology Partners

Eureka Technology Partners

Eureka Technology Partners are committed to helping you focus on your business by taking care of your IT infrastructure and data security needs.

World Informatix Cyber Security (WICS)

World Informatix Cyber Security (WICS)

World Informatix Cyber Security provides a range of cyber security services to protect valuable information assets to global business and governments.

Cybersecurity Maturity Model Certification Center of Excellence (CMMC COE)

Cybersecurity Maturity Model Certification Center of Excellence (CMMC COE)

CMMC COE is an IT-AAC sponsored public–private partnership that will be the focal point for entities seeking to achieve Cybersecurity Maturity Model Certification.

Digital Pathways

Digital Pathways

Digital Pathways is an award-winning data security provider that helps businesses protect their digital assets.

KT Secure

KT Secure

KTSecure’s mission is to provide proven and productive cyber security solutions and managed services, backed by our highly qualified and passionate team of experts.

WhiteJar

WhiteJar

WhiteJar offers an innovative approach to modern cybersecurity needs, empowering Ethical Hackers within its unique crowd platform.

UK Cyber Cluster Collaboration (UKC3)

UK Cyber Cluster Collaboration (UKC3)

UKC3 has been launched to support Cyber Clusters and encourage greater collaboration across regions and nations of the UK.

Atlas Cloud

Atlas Cloud

Atlas Cloud is a UK-wide provider of managed services based in Newcastle. Our ‘research-led’ approach to IT services helps leaders make better decisions about IT for their businesses.

AT&T Cybersecurity

AT&T Cybersecurity

AT&T Cybersecurity’s Edge-to-Edge technologies provide threat intelligence, collaborative defense, security without the seams, and solutions that fit your business.