Russia appears to be becoming more aggressive and more successful as the country’s hackers launch an increasing number of cyberattacks against the United States and other countries, according to a new report from Microsoft.
Microsoft’s 2021 Digital Defense report warned that it labeled “Russian nation-state actors” responsible for 58% of all nation-state cyber attacks, and that they are now responsible for every About once out of three succeed.
“Russian-based activity groups have strengthened their position as serious threats to the global digital ecosystem,” the report said, adding that Russian cyber actors are adaptable, using open-source tools to getting better, which makes them difficult to detect. ”
Microsoft also said that Russia’s most frequent target was the United States, followed by Ukraine and Britain, and that while the focus is shifting to intelligence, more than half of Russian attacks are now foreign policy, national security or defense-related agencies. are targeting. Up from just 3% a year ago.
According to Microsoft, North Korea, Iran and China have the most cyber attacks after Russia.
North Korea’s top targets were cryptocurrency companies, while Iran quadrupled its attacks on Israel as tensions between the two countries continued to rise.
China was also active, with much of its cyber efforts focused on intelligence gathering.
Microsoft said a large part of Beijing’s efforts focused on gathering social, economic and political intelligence from India, Malaysia, Mongolia, Pakistan and Thailand through a dangerous actor called Chromium.
Another prominent Chinese threat actor, known as Nickel, focused his efforts on foreign ministries in Central and South America.
The report also noted that South Korea, Turkey and Vietnam were increasingly active in cyberspace, although the volume of attacks from those countries was less than that of Russia, North Korea, Iran and China.
Top US officials have shared their concerns in recent weeks about the growing threat of cyberattacks, particularly from nation-state adversaries. And many have voiced support for legislation that would require private companies to notify the US government if their systems were breached.
“I think we’re at a point where, given cybercrime and cyber threats, it really has an urgency,” US Homeland Security Secretary Alejandro Meyerkas told a virtual cybersecurity conference earlier this week. “We are optimistic that the law will be passed.”
Speaking at the same summit on Thursday, Jane Easterly, director of the US Cybersecurity and Infrastructure Security Agency, said many of the threats are not new, but they remain worrying, noting “how vulnerable some of our critical infrastructure sectors are. ”