The US Department of State is offering up to $10 million for information on FSB officers involved in cyberattacks targeting energy infrastructure worldwide. These officers, part of the FSB’s Center 16, have conducted cyber espionage campaigns exploiting vulnerabilities such as CVE-2018-0171 and using advanced malware tools. #Dragonfly #CVE2018-0171
Keypoints
- The FSB officers Pavel Aleksandrovich Akulov, Mikhail Gavrilov, and Marat Tyukov are accused of hacking global energy companies.
- Their cyber campaigns involved supply chain attacks, spear-phishing, and malware installation across 135 countries.
- They exploited vulnerabilities in Cisco IOS devices, notably CVE-2018-0171, to gain persistent access and gather intelligence.
- The threat actor group Static Tundra, linked to FSB’s Center 16, conducts long-term espionage using stealthy tools like SYNful Knock.
- The FBI warns that these Russian-linked cyber actors pose a significant threat to critical infrastructure worldwide.