Cyber security representatives from the U.S. and Britain have warned of Russian state-sponsored cyber-attacks that are targeting network infrastructure devices such as routers and firewalls, to compromise government and private sectors globally.
Australian companies, including government agencies, are among those to have reportedly been caught in an alleged worldwide cyber-attack by Russian hackers. Britain's GCHQ intelligence agency had already warned that Russian Federation was using its cyber capabilities to target democracies.
"When we see malicious cyber activity, whether it be from the Kremlin or other malicious nation state actors, we are going to push back", said Rob Joyce, the White House cybersecurity coordinator.
Officials said the activity had been under observation for "some time" and was not directly related to missile strikes on Syria.
"For over twenty years, GCHQ has been tracking the key Russian cyber attack groups and today's joint UK-US alert shows that the threat has not gone away". This is the first time that in attributing a cyber attack to Russian Federation the United States and the UK have, at the same time, issued joint advice to industry about how to manage the risks from the attack.
A drink a day could be deadly, study finds
A new global study suggests that the recommended limits for drinking alcohol are too high in Canada and many other countries. They include Italy, Portugal and Spain as well as the United States , where for men the recommended limit is nearly double.
US Attorney's office to Michael Cohen
According to The Washington Post, Cohen may be under examination for possible bank fraud and for campaign finance violations. The prosecutors noted Cohen had personally not turned over any documents to Robert Mueller's Special Counsel investigation.
Russian Federation warns of 'consequences' for US-led strike on Syria
It was unlikely to get the minimum nine votes needed to force a veto by the United States, France or Britain, said diplomats. The United States, France and Britain defended their military action as legal during the Security Council meeting.
"We don't have full insight into the scope of the compromise", said Jeanette Manfra, a cybersecurity official for the US Department of Homeland Security.
"They could be pre-positioning for use in times of tension", said Ciaran Martin, chief executive of the British government's National Cyber Security Centre cyber defense agency, who added that "millions of machines" were targeted. So a hacker can monitor, modify or disrupt it, she said.
"Once you own the router, you own the traffic that's traversing the router", she said.
Network device vendors, ISPs, public sector organisations, private sector corporations and small office and home office customers should read the alert (TA18-106A - https://www.us-cert.gov/ncas/alerts/TA18-106A) and act on the recommended mitigation strategies. "But unlike Russian Federation, we abide by the law, so anything we do would be proportionately done", said one source.
"The current state of U.S. and United Kingdom network devices, coupled with a Russian government campaign to exploit these devices, threatens our respective safety, security, and economic well-being", the technical alert said. It was not clear whether that compromise was part of the same campaign.