The U.K.'s National Cyber Security Centre, along with U
S. and Canadian cyber authorities, have noticed an increase in attacks against Operational Technology (OT) operators by pro-Russia hacktivists since 2022. These attacks target critical infrastructure providers such as Water and Wastewater Systems, Dams, Energy, and Food and Agriculture sectors. The cyber authorities advise OT providers to enhance their cybersecurity posture due to the continued malicious cyber activity observed between 2022 and April 2024. The hacktivists exploit vulnerabilities in OT systems, manipulate settings, and use various techniques to gain remote access to control outputs, highlighting the importance of implementing strong passwords, multifactor authentication, and security updates. While these attacks have caused only minor disruptions so far, concerns are raised over potential physical threats and the amplification of fear by hacktivists to showcase their power. The report also mentions a pro-Russia hacktivist group called Cyber Army of Russia, linked to the notorious Russian hacking unit Sandworm, as being responsible for some of these attacks in the U.S., Poland, and France. Such incidents underscore the significance of strengthening cybersecurity measures for OT device users and manufacturers to protect critical infrastructure from these hacktivist threats. https://www.techrepublic.com/article/pro-russia-hacktivists-target-operational-technology/