CISA, NCSC-UK, and Partners Release Advisory on Russian SVR Actors Targeting Cloud Infrastructure

February 26, 2024

CISA, NCSC-UK, and Partners Release Advisory on Russian SVR Actors Targeting Cloud Infrastructure
All CISA Advisories, CISA, February 26, 2024

CISA, in partnership with UK National Cyber Security Centre (NCSC) and other U.S. and international partners released the joint advisory, SVR Cyber Actors Adapt Tactics for Initial Cloud Access. This advisory provides recent tactics, techniques, and procedures (TTPs) used by Russian Foreign Intelligence Service (SVR) cyber actors—also known as APT29, the Dukes, CozyBear, and NOBELIUM/Midnight Blizzard—to gain initial access into a cloud environment.

The authoring agencies encourage network defenders and organizations review the joint advisory for recommended mitigations. For more information on APT29, see joint CSA Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally or visit CISA’s Russia Cyber Threat Overview and Advisories page. For more guidance on cloud security best practices, see CISA’s Secure Cloud Business Applications (SCuBA) Project.

Comprehensive Cyber Security is Complex

1,000+ ASSURANT® Users

10,000+ Systems/sub-systems analyzed

40,000+ Manhours saved

Schedule a Call

How to Get Started

Schedule a Call

Speak with an ASSURANT™ team member to learn how ASSURANT™ can support your organization or project.

See ASSURANT™ in Action

Schedule an ASSURANT™ demo to see how other organizations have modeled and analyzed their systems

Try it out today

Receive access to ASSURANT™ to model your use case or scenario.

Schedule a Call

What Our Clients Say

“This system allowed me to identify missing components when the model validation engine ran. These were components which had infrequent changes and therefore were not commonly documented. The ASSURANT™ model told us that there were some elements missing. When we compared our sources against the model result, we discovered existing legacy components which had previously lacked documentation. The addition of these components to the model has given us confidence in the model’s completeness and improved our cyber readiness.”

Picture of a man silhouetted against a setting sun

Cyber Model Engineer

“Without the ASSURANT™ attack path analysis visual capability, it’s difficult to explain the complexities of a cyber battlespace to non-experts, and us good guys in the fight are often only learning from our mistakes in the wake of a cyber-attack. The different ways to visualize attack paths allows time to get ahead of the tactics and techniques of cyber actors by allowing us to simulate “black hat” scenarios for when a network artifact becomes compromised.”

Attack Path Analyst

Latest News Posts

FBI and CISA Issue Public Service Announcement Warning of Tactics Foreign Threat Actors are Using to Spread Disinformation in the 2024 U.S. General Election

FBI and CISA Issue Public Service Announcement Warning of Tactics [...]

CISA and FBI Release Product Security Bad Practices for Public Comment

CISA and FBI Release Product Security Bad Practices for Public [...]

CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force

CISA, FBI, NSA, and International Partners Release Advisory on Iranian [...]

12 Next

Latest Blog Posts

Advantages of Continuous Vulnerability Monitoring for Complex SCADA Systems using a Modeling System
Gallery
Advantages of Continuous Vulnerability Monitoring for Complex SCADA Systems using a Modeling System

Blog Posts, Cyber Defense, Cyber Survivability

Advantages of Continuous Vulnerability Monitoring for Complex SCADA Systems using a Modeling System

"Empower SCADA security with continuous vulnerability monitoring through cutting-edge modeling" [...]

Use Case: Simulating Penetration Testing Using a Modeling Framework
Gallery
Use Case: Simulating Penetration Testing Using a Modeling Framework

Blog Posts, Cyber Defense, Cyber Survivability

Use Case: Simulating Penetration Testing Using a Modeling Framework

“Unleash the power of modeling and simulation for smarter, more [...]

The Power of Simulation and Penetration Testing to Fortify Cyber Infrastructure
Gallery
The Power of Simulation and Penetration Testing to Fortify Cyber Infrastructure

Blog Posts, Cyber Defense, Cyber Survivability

The Power of Simulation and Penetration Testing to Fortify Cyber Infrastructure

“Unleash the power of modeling and simulation for smarter, more [...]

12 Next

Contact Us

1408 University Dr
College Station, TX 77840
(979) 260-1980
sales@kbsi.com

Resources

Identify and Prioritize Your Business Cyber Risks with ASSURANT®

Schedule a Call

Visit us at our parent website – KBSI.com

This material is based upon work supported by the United States Air Force under Contract No. FA8650-23-D-1061. Any opinions, findings and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the United States Air Force.