Russian Foreign Intelligence Service (SVR) operators have switched their attacks to target new vulnerabilities in reaction to US govt advisories published last month. The warning comes after US and UK governments formally attributed SolarWinds supply-chain attack and COVID-19 vaccine developer targeting to Russian SVR operators’ cyber-espionage efforts. Network defenders are warned to patch systems as promptly as possible to match the speed with which Russian hackers already changed targets following the April advisories. Russian cyberspies have also begun scanning for Microsoft Exchange servers exposed to ProxyLogon attacks targeting the CVE-2021-26855.
Source: https://www.bleepingcomputer.com/news/security/russian-state-hackers-switch-targets-after-us-joint-advisories/