UK cyber chiefs warn organisations to be aware of new Russian web attack tactics
Government bodies, tech companies and financial institutions are among those Russia’s foreign intelligence service are pursuing, advice warns.
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.UK cyber security chiefs have issued a new warning to Government bodies, tech companies and financial institutions to ensure they are safe from Russian state-backed hackers.
The latest advice from the National Cyber Security Centre (NCSC), penned alongside US security agencies, shares the most recent tactics used by the SVR – Russia’s foreign intelligence service – to collect information that could help it in future cyber operations.
This could include efforts to help Russia in its ongoing invasion of Ukraine, according to the agencies.
The advisory warns SVR attackers are exploiting cyber vulnerabilities on a massive scale, and have two types of intended victims for their actions.
The first of these are “targets of intent”, and include Government and diplomatic bodies, think tanks, tech companies, and financial institutions.
The second are “targets of opportunity”, where the SVR scans internet systems to look for vulnerabilities that could be exploited.
Once either kind of victim has been compromised, follow-up attacks by the SVR are likely, the advisory said.
UK organisations who believe they have been subject to the kind of Russian cyber attack highlighted in the advice are being urged to report it to the NCSC.
NCSC director of operations Paul Chichester said: “Russian cyber actors are interested in and highly capable of accessing unpatched systems across a range of sectors, and once they are in, they can exploit this access to meet their objectives.
“All organisations are encouraged to bolster their cyber defences: take heed of the advice set out within the advisory and prioritise the deployment of patches and software updates.”