The US government has asked critical infrastructure operators to review computer networks to see if they are infected with malicious software from the "Energetic Bear" hacking group, which private researchers say is tied to the Russian government.
ICS-CERT on Tuesday advised critical infrastructure operators to tighten security, and provided them a list of specific steps to better protect their systems. It also asked them to check to see if their systems had been infected.
"ICS-CERT strongly recommends that organisations check their network logs for activity associated with this campaign," DHS said in an alert on its Web site on Tuesday. "Any organisation experiencing activity related to this report should preserve available evidence for forensic analysis and future law enforcement purposes."
The request follows another alert last week on Havex from ICS-CERT, which said the agency and
Havex is a Remote Access Trojan, or RAT, that grants hackers control of an infected machine. While RATs are typically used for espionage, they can be used for other purposes, including downloading other malicious tools onto compromised machines.
"They are scanning and mapping out industrial control system networks," said
The Energetic Bear gang was first identified in January by researchers with cyber security firm CrowdStrike, which said the group was linked to the Russian government and was focused on espionage.
The security software maker said it believed the intended targets of the group were in the energy and industrial sectors. Geographically, the most activity was in
Most Popular Stories
- Doctor Who Christmas Episode Begins Production
- HCL America Adding 1,200 IT Jobs
- Medical Mfg. Jobs Coming to Dayton
- Michael Jackson, Freddie Mercury on Previously Unreleased Queen Cut
- Longtime Unemployed to Get Help in Las Vegas
- SpaceX Aims for Predawn Launch on Saturday
- Women Key to Democratic Party: Clinton
- U.S. Chamber Caught Up in Tax Inversion Question
- Feds Won't Say How Many Border Crossers Jailed
- Christie Didn't Order Bridge Shut Down, Feds Say