FBI: Nation-state cyber campaign targeting virtual private networks

Aug 03, 2020 - 11:19 PM
Cybersecurity lock in cloud with finger tapping on it.

The FBI today alerted the private sector to a sophisticated and aggressive nation-state campaign targeting known critical and common vulnerabilities in virtual private networks, initially reported by the government last year.

The FBI expects this group will likely conduct aggressive operations leveraging the vulnerabilities before they are widely patched, and could provide stolen data and network access to a hostile nation state or other malicious actors who could use ransomware against compromised networks. 

鈥淭his FBI report is very serious as it continues to highlight the potential cyber risk exposure of expanded virtual networks that have become ubiquitous in our COVID-19 world,鈥 said John Riggi, AHA senior advisor for cyber and risk. 鈥淭his report also highlights the need to have an effective and fast patch management program. Our adversaries鈥 overall strategy is straightforward and clear 鈥 use known vulnerabilities and just get in before we patch.鈥

For more information on this and other cyber and risk issues, contact Riggi at jriggi@aha.org.

Related News Articles

Headline
AHA files brief in Supreme Court defending states鈥 affidavit of merit requirements in federal court聽
The AHA Aug. 7 filed an amicus brief in the Supreme Court in defense of states鈥 affidavit of merit requirements in federal court, which require plaintiffs to鈥
Headline
DOJ releases guidance for federal funding recipients regarding discrimination
The Department of Justice July 29 released guidance for federal funding recipients on unlawful discrimination 鈥渙n the basis of race, color, national origin,鈥
Headline
Tactics by Scattered Spider cybercriminals highlighted in joint advisory聽
The FBI, Cybersecurity and Infrastructure Security Agency and international agencies July 29 released a joint advisory on recent tactics by the Scattered鈥
Headline
Microsoft says China-based threat actors behind SharePoint attacks聽
Microsoft July 22 released an update on the ongoing cyberattacks to SharePoint servers used within organizations, attributing the incidents to China-based鈥
Headline
Agencies warn of activity by Interlock ransomware
The FBI, Cybersecurity and Infrastructure Security Agency, Department of Health and Human Services, and Multi-State Information Sharing and Analysis Center鈥
Headline
Microsoft issues alert on vulnerabilities in ongoing SharePoint attacks聽
Microsoft July 19 issued an alert about active attacks from vulnerabilities targeting SharePoint servers used within organizations. The incidents have not鈥