GRI

U.S. and International Partners Release Report on Russian Cyber Actors Using “Infamous Chisel” Malware

News Cybersecurity English Reports
Date: 31st Aug, 2023 Source: Cybersecurity and Infrastructure Security Agency Country: USA Original Source

Brief

Here is a summary of the provided document:

Summary:

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), along with the Federal Bureau of Investigation (FBI) and National Security Agency (NSA) and agencies in Australia, Canada, the United Kingdom, and New Zealand, have jointly published a report on a malware campaign conducted by Russian cyber actors against the Ukrainian military. The malware, known as Infamous Chisel, targets Android devices used by Ukrainian military personnel and enables unauthorized access, file scanning, traffic monitoring, and sensitive information theft. The report highlights the importance of international cooperation and the need for organizations to remain vigilant against Russian cyber activity.

,

WASHINGTON – The U.S. Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), National Security Agency (NSA), and agencies in Australia, Canada, United Kingdom, and New Zealand today published a joint report on a malware campaign conducted by Russian cyber actors against the Ukrainian military.

The malware analysis report provides technical details of a new kind of malware used to target Android devices in use by Ukrainian military personnel. The malware, called Infamous Chisel, enables unauthorized access to compromised devices and is designed to scan files, monitor traffic, and periodically steal sensitive information.

“For years, the U.S. Government has been calling out Russian actors who have engaged in a range of malicious cyber activity targeting U.S. and allied partners for cyber espionage and potential disruptive actions,â€ said CISA Executive Assistant Director for Cybersecurity, Eric Goldstein. “Today’s joint report reflects the value of deep collaboration across our international cyber defense partners, the need for all organizations to keep their Shields Up to detect and mitigate Russian cyber activity, and the importance of continued focus on maintaining operational resilience under all conditions.â€  

The campaign was publicly uncovered by Ukraine’s security agency, the SBU, earlier this month and has been attributed to the threat actor known as Sandworm. The United Kingdom and the United States have previously attributed Sandworm to the Russian GRU’s Main Centre for Special Technologies (GTsST).

For more information on Russian state-sponsored cyber activity, read Joint Cybersecurity Advisory on Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure and CISA’s Russia Cyber Threat Overview and Advisories webpage.

###

About CISA 

As the nation’s cyber defense agency and national coordinator for critical infrastructure security, the Cybersecurity and Infrastructure Security Agency leads the national effort to understand, manage, and reduce risk to the digital and physical infrastructure Americans rely on every hour of every day.

Visit CISA.gov for more information and follow us on Twitter, Facebook, LinkedIn, Instagram. 

Highlights content goes here...

Summary:

On August 31, 2023, the United States Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), National Security Agency (NSA), and agencies from Australia, Canada, the United Kingdom, and New Zealand jointly published a report on a malware campaign conducted by Russian cyber actors against the Ukrainian military. The malware, identified as Infamous Chisel, is designed to target Android devices used by Ukrainian military personnel and enables unauthorized access, file scanning, traffic monitoring, and periodic data theft.

The malware analysis report provides technical details on the new malware, which is attributed to the threat actor known as Sandworm. Sandworm has been previously linked to the Russian GRU’s Main Centre for Special Technologies (GTsST) by the United Kingdom and the United States. The campaign was publicly uncovered by Ukraine’s security agency, the SBU, earlier in the month.

Eric Goldstein, CISA’s Executive Assistant Director for Cybersecurity, emphasized the importance of international collaboration in detecting and mitigating Russian cyber activity. He also highlighted the need for organizations to maintain operational resilience and keep their “Shields Up”” to detect and respond to potential disruptions.

The report is part of a larger effort to raise awareness about Russian state-sponsored cyber threats and provide guidance to critical infrastructure organizations. CISA has published several advisories and overviews on Russian cyber threats

Cybersecurity and Infrastructure Security Agency

Quick Insight
RADA.AI
RADA.AI
Hello! I'm RADA.AI - Regulatory Analysis and Decision Assistance. Your Intelligent guide for compliance and decision-making. How can i assist you today?
Suggested
Related Documents
Latest annual statistics show growth in SMSF sector continues
Date: 5th Feb, 2025 Source: Australian Taxation Office (ATO) Country: Australia
News Tax & Compliance Reports
Publication of “Biohealth Report” to expand the value of connected health
Date: 5th Feb, 2025 Source: Korea Health Industry Development Institute (KHIDI) Country: South Korea
News Healthcare & Pharma Reports
NIST Report to Congress Provides Update on Champlain Towers South Investigation
Date: 5th Feb, 2025 Source: National Institute of Standards and Technology Country: USA
News Cybersecurity Reports

Form successfully submitted. One of our GRI rep will contact you shortly

Thanking You!

Click here

Enter your Email

Enter your registered username/email id.

Enter your Email

Enter your email id below to signup.

Enter your Email

Enter your email id below to signup.
Individual Plan
  • Designed for Growing Compliance Teams
$125 / month OR $1250 / year
Features
  • • Coverage for 20 jurisdictions
  • • Monitoring from 500+ regulatory authorities
  • • AI compliance summaries
  • • RaDa.ai : Single-Role
Best for: Researchers, Legal professionals, Academics
Subscribe Now
Enterprise Plan
  • Perfect for Global Enterprises
Contact for Pricing
Features
  • • Custom jurisdictional coverage
  • • Custom monitoring of regulatory authorities
  • • RaDa.ai : Customizable multi-role
  • • Custom reporting and dashboard capabilities
  • • API access for seamless integration
Best for: Law Firms, Corporations, Government Bodies
Contact Sales