The State Special Communications Service of Ukraine (SSSCIP) has published their assessment of Russian Cyber tactics for H1 2023.
Of note are some of the statistics concerning the tactics Russia used that differ from peacetime trends. I highlight these because in my experience these tactics will permeate the rest of world based on their success or failure during the Ukraine conflict.
Two Key trends stood outside of the norm for me.
- Media was a high priority target. When compared with industry standards this priority does not fit with NATO trends but is logical based on the information war occurring.
- Malware distribution was the 2nd highest incident type. Based on historical industry trends in the USA and Australia account compromise (BEC), password enumeration and phishing are the higher reported types of incidents. This is interesting and might show a concentration of Russian State backed offensive cyber operations