Cybersecurity warning for Western logistics entities and technology companies
A joint cybersecurity advisory (CSA) was recently published regarding “a Russian state-sponsored cyber campaign targeting Western logistics entities and technology companies.”
According to the advisory, “this includes those involved in the coordination, transport, and delivery of foreign assistance to Ukraine.” The companies are being targeted by by the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (85th GTsSS), military unit 26165. The authors of the warning expect the incidents to continue.
Additionally, “executives and network defenders at logistics entities and technology companies should recognize the elevated threat of unit 26165 targeting, increase monitoring and threat hunting for known TTPs and indicators of compromise (IOCs), and posture network defenses with a presumption of targeting.”
