Iran-backed hackers took advantage of Microsoft and pose a major cyber threat, researchers say

Law enforcement agencies in the US, UK and Australia have in a joint statement an Iran-sponsored group as a serious threat to cybersecurity.

The Cybersecurity and Infrastructure Security Agency (CISA), the FBI, the Australian Cyber ​​Security Center (ACSC) and the British National Cyber ​​Security Center (NCSC) released a joint cybersecurity advisory on Wednesday that group of hackers to the Iranians government.

the agencies also labeled as the group an advanced persistent threat (APT) after it exploited Fortinet and Microsoft Exchange in March and October respectively. The group won access to the systems as part of an ongoing operation to fight ransomware in to put.

The advisory notes the group has actively focused on “a broad range of victims in multiple US critical infrastructure sectors, including the transport and healthcare and public health sectors, as well as Australian organizations.”

FBI AWARE OF AND INVESTIGATES FAKE FBI EMAILS SENT TO THOUSANDS

Authorities did not name or link the Iranian actors to any specific group working for the government.

Cybersecurity Agencies in all three countries urged everyone organization using Microsoft Exchange and Fortinet to investigate suspicious activity in their networks.

The US has identified a number of foreign ransomware to attack over the past two years, met especially the Ryuk and Darkside groups, die were connected by the authorities met Russia, but not met the Russians government.

US AUTHORITIES SEARCH EXPLANATION OF RUSSIAN FOR LISTED RANSOMEWARE CASH LAUNDRY

Ryuk orchestrated a song of to attack on US health organizations and facilities at peak of the coronavirus pandemic, potentially delaying life-saving treatments for patients, according to Radio Free Europe.

US authorities have linked Darkside to Colonial Pipeline ransomware attack that happened in May 2021.

rather this year, the Biden administration imposed sanctions on Russia for the solar winds computer hack, die began in 2020 when malicious code in updates to popular was sneaked software that checks computer networking of companies and governments.

MICROSOFT SAYS RUSSIAN GROUP BEHIND SOLARWINDS ATTACK NOW TOWARDS SUPPLY CHAIN

The malware die affects a product made through the in America-based company SolarWinds, gave elite hackers remote access in An organization’s networks so they could steal information.

Officials said the president has set up a US-Russia expert group for the US to participate”directly” on the issue of ransomware.

CLICK HERE TO GET THE FOX NEWS APP

“We’re looking at the Russian government tackle ransomware criminal activity originating from actors in Russia,” an official said, adding that the Biden administration has “also shared information with Russia over criminal ransomware activity is carried out from its territory.”

In June 2021, Biden said he was meeting Russian President Vladimir Putin list of U.S assets and infrastructure die Russian hackers should avoid offensive. Which move used to be wide panned as a “green” light” for Russian hackers go after other American targets.

Brooke Singman of Fox News contributed to this report.

Denial of any Responsibility!
AsumeTech is a News Source that Publishes News from its Editorial Team and the Automatic News Aggregation around the News Media. All the Aggregated Content you find on our site is available freely over the Internet; each piece of Content includes the hyperlink to its Primary Source. We have just arranged that in our platform for Educational Purposes only. All the Copyrights and Trademarks belong to their Rightful Owners and all Materials to their Authors. If you are the Content owner and do not want us to publish your materials on our Website, please get in touch with us by email – [email protected]; we will remove the Content from our Website.