Logo

Home Technology Networking Cyber Group Exploits Network D...

Cyber Group Exploits Network Devices at Scale


Networking

Cyber Group Exploits Network Devices at Scale

Attackers with Russian affiliations use network-edge misconfigurations that leave Russian organizations of energy and infrastructure vulnerable to high risks of sophisticated cyberespionage.

Russian state-sponsored hackers have increased their efforts on energy firms and other companies providing critical infrastructure by taking advantage of misconfigurations in network-edge devices, as reported by Amazon Threat Intelligence. The campaign creates awareness of increasing risk in enterprise networks.

The group has been active at least since the year 2021 and has previously used well-known vulnerabilities in products of WatchGuard, Confluence, and Veeam. Nevertheless, researchers describe the strategic change in 2025 in the direction of exploiting poorly configured networking resources and not by zero-day vulnerabilities or freshly identified problems. The main targets are enterprise routers, VPN concentrators, and remote access gateway and network management appliances.

The analysis of Amazon associates the black infrastructure of the attackers with the Sandworm, or rather APT44, the terror group attributed to the Russian military intelligence agency, the GRU. It was also found to have overlaps with Curly COMrades, which did point to coordinated subgroups of access, lateral movement and persistence.

The attackers mentioned that they managed to gain continuous access to affected devices running on AWS EC2 instances and breach the credentials by stealing network traffic. This would be replayed against other enterprise services later, with the assistance of stolen credentials helping to continue the intrusion into the networks and cloud platforms.

The energy sector has been the most targeted area in this campaign, which has also extended its touch to the technology providers, telecommunications companies and managed service providers. Amazon recommends organizations cultivate networking hygiene through auditing the configuration of devices, isolating management interfaces, realizing multi-factor authentication, and watching authentication abnormalities to mitigate exposure to these types of risks.

Moto G56 5G Leak Reveals Specs, Design, and Launch Details
Safran and Bombardier Join Forces on Defense Technology
EU Faces Backlash over Weakened Supply Chain Law
Circio, NeoRegen Advance Biotech Pact with In-Vivo Trials
Unchained Robotics Secures Funding to Simplify Automation
ABN AMRO Backs Magic Laneā€™s Software Innovation Push

Business News

Trafigura, CEO Succession, Departure, Hadi Hallouche

Ceo

Hadi Hallouche left Trafigura to pursue other opportunities at the sam

Stellantis Honors Startups Shaping the Future of Mobility

Startups

Stellantis values new enterprises in mobility, sustainability, and tec

Valiantys Strengthens Management Consulting with New Leadership

Management consulting

Valiantys announces the appointment of Cyril Banos as its head of tran

ciobulletin - Sri Lanka Boosts Luxury Travel and Tourism in India

Luxury travel and tourism

Sri Lanka markets itself as a luxury travel and tourism destination in

Recommended News

Mistral AI, Launches Le Chat, Chatbot Apps, AI Summit

Chatbots

Mistral AI Launches "Le Chat" Chatbot Apps amid Global AI Summit

Stibo Systems, Solita, master data management, data quality, cloud, AI

Big data

Stibo Systems and Solita Partner to Improve Master Data Managemen

CĆ©sar, Nomination, Animated, Features and Visual Effects

Animation

2025 CĆ©sar Nominations Unveiled with Strong Presence of Animated

Europe, Strengthening, Biotech, Biosecurity

Biotech

Europe's Path to Strengthening Biotech Competitiveness and Biosec

Nokia Unveils Fabric to Revolutionize Networking Automation

Networking

Nokia Unveils Fabric to Revolutionize Networking Automation

EU Moves to Certify Cybersecurity Managed Services

Managed services

EU Moves to Certify Cybersecurity Managed Services

Precision Fermentation Poised to Transform Food and Beverages

Food and beverage

Precision Fermentation Poised to Transform Food and Beverages

BIO-key Joins Spainā€™s ISMS Forum to Advance IAM

Identity and access management

BIO-key Joins Spainā€™s ISMS Forum to Advance IAM

Most Featured Companies

retrain ai xaana transigma tier44 technologies tedco syncari stormforge sigmetrix leafhouse financial good good natural sweeteners llc envirotech vehicles inc d&l education solutions c2ro book4time association of black tax professionals american battery solutions inc alpine distilling xcastlabs Susan Semmelmann Interiors preclinical safety (PCS) consultants ltd neuro42 logix lanner kastle cox x2engine vivolor therapeutics inc upstream works the keith corporation stt logistics group segra rittenhouse pura power hero national retail solutions
matrix applications kraftpal technologies kirkman implantica hot spring it growth institute geniova frannexus form epic golf club dth expeditors digital commerce bank cgs cellwine castle connolly canon business process services autoreimbursement archergrey appranix wool & water wise digital partners virgin incentives suisse bank spotzer digital resecurity outstaffer otava opticwise lexrock ai keystone employment group exponential ai croow cloud4wi anchin agape treatment center abbey research abacus semiconductor corporation

Latest  Magazines

Most Innovative Companies to Watch 2026
Most Innovative Companies to Watch 2026
December Edition 2025
December Edition 2025
Innovators of the Year 2025
Innovators of the Year 2025
October Edition 2025
October Edition 2025
September Edition 2025
September Edition 2025
September Monthly Edition 2025
September Monthly Edition 2025
August Edition 2025
August Edition 2025
Leading Companies to Watch 2025
Leading Companies to Watch 2025

Ā© 2025 CIO Bulletin Inc. All rights reserved.