Federal Bureau of Investigation has high confidence that Russian state-sponsored cyber actors are using compromised routers to conduct man-in-the-middle attacks to support espionage, extract intellectual property, maintain persistent access to victim networks, and potentially lay a foundation for future offensive operations.
American and British officials said the attacks affected a wide range of organizations including internet service providers, private businesses and critical infrastructure providers. This is because if the reports are to be believed, Russian Federation has apparently been hacking routers in homes around the world.
U.S. officials said this year that Russian military hackers compromised routers in South Korea in January and deployed new malware when the Olympics began in February.
Taylor said while the devices could have been used to access sensitive data, there was "no indication" Australian information had been compromised. And two: "Encourage industry to secure the devices we depend on", White House cybersecurity coordinator Rob Joyce said.
It says that the U.S. government has information about threats from cyber attacks seeking to exploit routers and network switches en masse dating back to 2015.
It said that "multiple sources" - including cyber security research organisations - had reported the activity, which follows a surge in Russian propaganda after last week's air-strikes on Syria. This report contains indicators of compromise (IOCs) and contextual information regarding observed behaviors on the networks of compromised victims.
"Network devices are ideal targets", the alert reads.
The "purpose of these attacks could be espionage, it could be the theft of intellectual property, and of course, it could be pre-positioning for use in times of tension", said Ciaran Martin, Chief Executive of the UK's National Cyber Security Centre (NCSC).
"The UK government will continue to work with the USA, other global allies and industry partners to expose Russia's unacceptable cyber behaviour, so they are held accountable for their actions".
Russian Federation is being accused of a massive campaign to undermine the security of firewalls and routers in a bid to support espionage and future attacks.
The FBI also pledged to do whatever it takes to combat Russian cyberattacks.
The alert - published on the US-CERT website - warns that the "current state of US network devices - coupled with a Russian government campaign to exploit these devices - threatens the safety, security, and economic well-being of the United States". Jeremy Fleming, the Director of United Kingdom intelligence agency GCHQ also recently called out Russia's actions in cyberspace.