Microsoft: ‘Strontium’ Group Uses IoT Devices in Network Intrusions

Microsoft has found a hacking group called Strontium that uses internet-of-things devices to perform attacks on corporate networks.

Researchers at the company’s threat intelligence center discovered in April that the group used a VoIP phone, a video recorder and an office printer across several client locations “as points of ingress” to gain network access and tap into higher-value data, Microsoft said Monday.

Microsoft has sent approximately 1.4K nation-state notifications to organizations that have been targeted by Strontium in the past year and found that majority of the attacks have zeroed in on organizations across government, defense, military, information technology, engineering, medicine and education sectors.

The company offered recommendations to help organizations protect IoT devices from cyber threats, such as cataloguing IoT devices operating in corporate networks, creating a custom security policy for each IoT device and conducting routine configuration against deployed IoT devices.

Check Also

Expanse

Expanse Enters Partnership to Help Defense Sector Protect Internet-Linked Assets

Expanse has partnered with the National Defense Information Sharing and Analysis Center in a push to help contractors secure internet-facing systems through the use of attack surface management tools.

General Dynamics

General Dynamics Delivers Unmanned System Data Security Tech to US Gov’t

General Dynamics's mission systems business has supplied encryption systems to the U.S. government to help users secure intelligence, surveillance, reconnaissance and mission data in unmanned systems.

AEHF-6

Lockheed Concludes On-Orbit Test of Sixth AEHF Military Comms Satellite

Lockheed Martin wrapped up on-orbit testing activities for the sixth Advanced Extremely High Frequency satellite five months after the U.S. Space Force launched the system into orbit to support global military communications.