Cybersecurity and Infrastructure Security Agency releases joint advisory with FBI, NSA and FBI on Tuesday. Russian state-sponsored actors have been known to target critical infrastructure, CISA says. Russian APTs are using “common but effective tactics” to disrupt networks, the U.S. agencies say. The advisory also contains a list of 13 vulnerabilities being exploited by the state-backed cybercriminals, including CVEs affecting Microsoft Exchange, Oracle WebLogic Server and Cisco Router. Security professionals are advised to prepare by creating and maintaining a cyber incident response plan.”]
Source: https://www.govinfosecurity.com/us-warns-russia-backed-threat-to-critical-infrastructure-a-18291