GBAF Logo
Headlines

FBI warns of Russian hacks targeting US critical infrastructure

Published by Global Banking & Finance Review

Posted on August 20, 2025

2 min read

· Last updated: January 22, 2026

Add as preferred source on Google
FBI warns of Russian hacks targeting US critical infrastructure
cybersecurity technology financial services risk management investment
Global Banking & Finance Awards 2026 — Call for Entries

By AJ Vicens (Reuters) -Hackers associated with some of Russia’s most prolific cyber espionage units have over the last year been leveraging a vulnerability in older Cisco software to target thousands

FBI Alerts on Russian Cyber Attacks Targeting US Infrastructure

Overview of Russian Cyber Threats

By AJ Vicens

Details of the Cyber Attacks

(Reuters) -Hackers associated with some of Russia’s most prolific cyber espionage units have over the last year been leveraging a vulnerability in older Cisco software to target thousands of networking devices associated with critical infrastructure IT systems, the FBI and Cisco said on Wednesday.

Targeted Sectors and Regions

Hackers working within the Russian Federal Security Service (FSB) Center 16 are extracting “device configuration information en masse, which can later be leveraged as needed based on then-current strategic goals and interests of the Russian government,” Cisco Talos researchers Sara McBroom and Brandon White wrote in a threat advisory published to the company’s blog. 

Exploited Vulnerabilities

In a separate advisory, the FBI said that over the last year it had detected the hackers collecting configuration files “for thousands of networking devices associated with U.S. entities across critical infrastructure sectors.” 

Long-term Access Strategies

In some cases the configuration files are modified to enable long-term access for the hackers, who use that access to conduct reconnaissance in targeted networks, with a particular interest in industrial control systems.

The Russian embassy in Washington did not respond to a request for comment. Moscow denies conducting cyber espionage operations.

The hackers are exploiting a seven-year-old vulnerability in Cisco IOS software, targeting unpatched and end-of-life network devices, according to a separate threat advisory published on Wednesday by Cisco Talos, Cisco’s threat intelligence research unit.

Other state-backed hackers are likely conducting similar hacking operations targeting the devices, the Cisco Talos researchers wrote. 

Organizations within the telecommunications, higher education and manufacturing sectors across North America, Asia, Africa and Europe have been most targeted, “with victims selected based on their strategic interest to the Russian government,” the researchers said.

The hacking unit linked to the activity has been operating for at least a decade, according to the researchers, and is likely a subgroup within the FSB’s Center 16. In March 2022 the U.S. Department of Justice charged four Russian nationals within the group of illegally targeting the global energy sector between 2012 and 2018.

(Reporting by AJ Vicens in Detroit; Editing by Daniel Wallis )

Key Takeaways

  • FBI warns of Russian cyber attacks on US infrastructure.
  • Hackers exploit old Cisco software vulnerabilities.
  • FSB-linked groups target critical infrastructure sectors.
  • Long-term access strategies used for reconnaissance.
  • Global sectors including telecom and manufacturing targeted.

Frequently Asked Questions

What has the FBI reported regarding Russian hackers?
The FBI has detected hackers associated with Russia's FSB exploiting vulnerabilities in Cisco software to target thousands of networking devices linked to U.S. critical infrastructure.
Which sectors are most affected by these cyber attacks?
Organizations in the telecommunications, higher education, and manufacturing sectors across North America, Asia, Africa, and Europe have been the most targeted.
What is the nature of the vulnerability being exploited?
The hackers are exploiting a seven-year-old vulnerability in Cisco IOS software, specifically targeting unpatched and end-of-life network devices.
How are the hackers maintaining access to targeted networks?
In some instances, the hackers modify configuration files to enable long-term access, allowing them to conduct reconnaissance within the targeted networks.
What has been the response from the Russian government?
The Russian embassy in Washington did not respond to requests for comment, and Moscow denies conducting any cyber espionage operations.

Tags

Related Articles

Image for Italy to extradite suspected Chinese hacker wanted by US authorities, says source

Italy to extradite suspected Chinese hacker wanted by US authorities, says source

Image for Soccer-Chelsea reach FA Cup final with 1-0 win over Leeds

Soccer-Chelsea reach FA Cup final with 1-0 win over Leeds

Image for Netanyahu's biggest rivals join forces for Israel's next election

Netanyahu's biggest rivals join forces for Israel's next election

Image for Israel issues evacuation warning for seven Lebanese towns beyond 'buffer zone'

Israel issues evacuation warning for seven Lebanese towns beyond 'buffer zone'

Image for Athletics-Kenya's Sawe shatters elusive two-hour marathon barrier to win in London

Athletics-Kenya's Sawe shatters elusive two-hour marathon barrier to win in London

Image for UK's Starmer and Trump discuss 'urgent need' to restore shipping in Strait of Hormuz

UK's Starmer and Trump discuss 'urgent need' to restore shipping in Strait of Hormuz

More from Headlines

Explore more articles in the Headlines category

Image for Pope Leo says those who wage war are thieves stealing away our peaceful future
Pope Leo says those who wage war are thieves stealing away our peaceful future
Image for King Charles relieved Trump and first lady unharmed after shooting
King Charles relieved Trump and first lady unharmed after shooting
Image for Northern Ireland police investigate car explosion as attempted murder
Northern Ireland police investigate car explosion as attempted murder
Image for UK says cooperating closely with US on security ahead of King Charles' visit
UK says cooperating closely with US on security ahead of King Charles' visit
Image for Israeli attacks kill at least four Palestinians in Gaza, medics say
Israeli attacks kill at least four Palestinians in Gaza, medics say
Image for Six passengers injured evacuating from Swiss Air flight in India, Economic Times says
Six passengers injured evacuating from Swiss Air flight in India, Economic Times says
Image for Trump removed from White House correspondents dinner as attendees take cover
Trump removed from White House correspondents dinner as attendees take cover
Image for Car explodes outside police station in Northern Ireland, Belfast Telegraph reports
Car explodes outside police station in Northern Ireland, Belfast Telegraph reports
Image for US-Iran peace hopes fade as Trump scraps talks
US-Iran peace hopes fade as Trump scraps talks
Image for Ukraine marks 40th anniversary of Chornobyl disaster under cloud of war
Ukraine marks 40th anniversary of Chornobyl disaster under cloud of war
Image for Russia's parliamentary speaker visits Pyongyang, KCNA says
Russia's parliamentary speaker visits Pyongyang, KCNA says
Image for Probe of stolen $1 billion should continue after conviction of Moldovan magnate, top official says
Probe of stolen $1 billion should continue after conviction of Moldovan magnate, top official says
View All Headlines Posts