Russia’s Fancy Bear state-sponsored group was spotted gearing ready for mid-terms. Cybersecurity researchers have already uncovered evidence that Russian state-sponsored hacking groups are attempting to interfere in the 2018 US mid-term elections. They found that FancyBear hacking group has already begun setting up the infrastructure to perform targeted phishing attacks on multiple candidates.
Earlier this year researchers have discovered a fake Microsoft domain that had been established as the landing page for phishing attacks. These cyber attacks were made against 3 important American candidates that might represent interesting targets from an espionage standpoint as well as an election disruption standpoint.
In the past, Fancy Bear hacker group had focused its efforts on targeting computers belonging to the Democrats and Hillary Clinton’s campaign and leaking the Dems’ internal emails whit the intent of shifting the balance of Congress for the GOP, and the White House race for Donald Trump.
Companies and individual people must take certain precautions against this growing phenomenon of cyber attacks; for that they should implement at least a cybersecurity solution, like an antivirus, to protect their systems. Necessary things like regularly updating operating systems, using antivirus for Windows or antivirus for Mac
depending on which OS your device is using. Companies must also hire professional cybersecurity firms to do regular checkups to their internal network a couple of times per year. These checkups must always include a penetration test and various ethical hacking test.
In this case, Microsoft’s services have a prominent role for Fancy Bear approach, because the services make phishing pages more believable This trickery can make victims install malware more easily, in order for hackers to steal usernames and passwords.
Because of this, Microsoft has made a habit of tracking the group and seize or shut down the fake domains. After two years of tracking the gang, Microsoft has become efficient enough that a new domain can be challenged and seized in as little as 24 to 48 hours.
Remember that securing your Microsoft Office 365 account with multi-factor authentication is a must if you want to keep it secured.
Also, the US Department of Justice issued a report warning that cyber attacks on the mid-term elections are undergoing. The report notes that the government has created a task force, including multiple agencies and states attorney generals, that will focus on detecting and prosecuting attempts to affect the outcome of the mid-term vote.
Keep in mind that every device has a significant value that must be protected by at least cybersecurity solution like an antivirus. Depending on which OS your device is running, install an antivirus for Windows or antivirus for Mac for total protection. Companies must take an extra step and hire a professional cybersecurity firm that will run various cybersecurity tests on your company’s network to implement only the best possible cybersecurity solution. Always opt for a package that includes at least a penetration test
and ethical hacking test. For companies that exist 100% online, we recommend the using of cyber-secured web hosting services.