Cylance Identifies Use of Compromised Core Routers in Russia's Targeting of Western Energy Companies

New research from Cylance identifies for the first time the use of a compromised core router as one of the tools wielded by the threat actor that has recently been accused by the United States government of acting in the interests of Russia to attack government agencies and organisations in the “energy, nuclear, commercial facilities, water, aviation, and critical manufacturing sectors.”

This is a discovery whose significance far outweighs its size, given that core router compromises are considerably harder to detect, analyse, patch, and remediate than compromises of PCs.

Also Read

Stay in the know with our newsletter