Cybersecurity Advisory on Russian GRU Led Global Brute Force Campaign

By Alvaro Marañon
Thursday, July 1, 2021, 1:02 PM

On July 1, 2021, the National Security Agency, Cybersecurity and Infrastructure Security Agency, Federal Bureau of Investigation and the United Kingdom's National Cyber Security Centre released a cybersecurity advisory revealing a past but likely ongoing brute force campaign targeting hundreds of U.S. and foreign organizations. The advisory specifically identified how the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS) is using various tactics, techniques and procedures in this campaign to penate government and private sector victim networks. The advisory further warned that these exploitations are “almost certainly ongoing” and for system administrators “to immediately review the indicators of compromise included in the advisory and to apply the recommended mitigations.”

The full advisory can be read here and below:


Page 1 of Cybersecurity Advisory on GRU Global Brute Force Campaign

Contributed to DocumentCloud by Alvaro Marañon (The Lawfare Institute) • View document or read text