"Widely deployed platforms from Citrix, Fortinet, Pulse Secure, Synacor and VMware are all in the crosshairs of APT29, bent on stealing credentials and more. The Feds are warning that nation-state actors are once again after U.S. assets, this time in a spate of cyberattacks that exploit five vulnerabilities that affect VPN solutions, collaboration-suite software and virtualization technologies. According to the U.S. National Security Agency (NSA), which issued an alert Thursday, the advanced persistent threat (APT) group known as APT29 (a.k.a. Cozy Bear or The Dukes) is conducting 'widespread scanning and exploitation against vulnerable systems in an effort to obtain authentication credentials to allow further access.'..." https://threatpost.com/nsa-security-bugs-active-nation-state-cyberattack/165446/
US warns of Russian state hackers still targeting US, foreign orgs https://www.bleepingcomputer.com/ne...tate-hackers-still-targeting-us-foreign-orgs/
