Regional Threat Perspectives, Fall 2019: Russia
ATT&CK techniques detected
T1046Network Service Discovery
96%
“ip addresses attacking russia compared to other regions we compared the volume of attack traffic systems in russia received per ip address to other regions of the world and there was a clear difference. as mentioned in the previous section, 54 % of the ip addresses on russia ’ s …”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1190Exploit Public-Facing Application
39%
“not a top attacked port anywhere else in the world during this time period. ( other ports attacked on russia systems during this time period that were not attacked in other regions include signet ctf port 2733 and port 21455. ) ssh port 22 in the third position was another top at…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
The same countries that attacked the rest of the world also attacked systems in Russia, but from different networks and IP addresses.