Contact us here to learn more: #cyberattack #cybersecurity #cybersecurityawareness #cybersecuritythreats #cybersafety #cyberaware #government #newsarticle #security #securityoperationsįederal Agencies Infested by Cyberattackers via Legit Remote Management SystemsĪccording to the Kaspersky report, some cybercriminal groups have become sophisticated enough to need an entire staff of software developers, malware creators, and attack specialists. MAD Security’s Security Operations Center (SOC) monitors, detects, and responds to cybersecurity threats and attacks like this 24/7, 365 days a year. The exact scope of the stolen data is still being investigated as agencies scramble to remediate the damage.

Once inside, they were able to move laterally throughout many agency systems and extract sensitive data. The hackers were able to exploit a vulnerable configuration of these products to gain access to many government networks. The RMM systems that the attackers used are AnyDesk and ConnectWise Control, both being commercial products commonly used for remote system management. This type of breach is particularly concerning as government employees rely on these systems more than ever to conduct their work remotely. According to recently released information from the US Cybersecurity and Infrastructure Security Agency (CISA), hackers were able to gain initial intrusion into several networks through a legitimate remote access system.