Russia’s FSB has issued an alert, “On the threat of targeted computer attacks,” warning businesses of increased likelihood of US cyber attack. “In the face of constant accusations against the Russian Federation by representatives of the United States and their allies of [Russian] involvement in organizing computer attacks, as well as threats from their side [of] ‘retaliatory’ attacks on the Russian Federation’s critical information infrastructure, we recommend taking the following measures to improve the security of information resources.” Those measures amount to a sound (albeit anodyne) list of fifteen cyber hygiene best practices.
ZDNet characterizes the FSB's alert as signalling, as a response to remarks by the new US Administration last Wednesday. Referring to Solorigate, a representative said, “we reserve the right to respond at a time and manner of our choosing to any cyberattack.”
Lawfare describes the risks Solorigate, and specifically the SolarWinds Orion platform’s supply chain compromise, pose to control systems.
Claroty today released a summary of flaws in the Open Platform Communications (OPC) network protocol.
SonicWall disclosed Friday that it had been the victim of “a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products.” The company initially believed NetExtender VPN had been compromised, but has since concluded that the product is safe. Possible compromise of the SMA 100 Series remains under investigation.