Five vulnerabilities have been exploited in attacks on the United States and allies by the Russian Foreign Intelligence Service

The US National Security Agency (NSA), Cyber Security and Infrastructure Security Agency (CISA), and Federal Bureau of Investigation (FBI) have jointly issued a warning about an attack on the United States by the Russian Foreign Intelligence Service (SVR). The SVR is said to be exploiting five vulnerabilities, and the NSA is calling for countermeasures.

Russian Foreign Intelligence Service Exploiting Five Publicly Known Vulnerabilities to Compromise US and Allied Networks — FBI

NSA: Top 5 vulnerabilities actively abused by Russian govt hackers
https://www.bleepingcomputer.com/news/security/nsa-top-5-vulnerabilities-actively-abused-by-russian-govt-hackers/

US government strikes back at Kremlin for SolarWinds hack campaign | Ars Technica
https://arstechnica.com/tech-policy/2021/04/us-government-strikes-back-at-kremlin-for-solarwinds-hack-campaign/

The latest activities by SVR are known to be attacks on SolarWinds' 'Orion Platform' and hacking of a new corona virus vaccine research organization using malware 'WellMess' etc., and the attacker who was involved in the case of SolarWinds Has been using the same method to break through the certification by exploiting the vulnerability.

Specifically, the five vulnerabilities used to invade the victim's equipment and network are as follows.

-CVE-2018-13379: Fortinet FortiOS SSL VPN function vulnerability
CVE-2019-9670: XML external entity vulnerability in Synacor Zimbra Collaboration Suite
・ CVE-2019-11510: Pulse Secure ・ VPN vulnerability in Pulse Connect Secure
CVE-2019-19781: Citrix Application Delivery Controller and Citrix Gateway vulnerabilities
-CVE-2020-4006: Command injection vulnerability in VMware

Rob Joyce, director of the NSA's Cybersecurity Agency, told news site Bleeping Computer that 'it is necessary to make SVR work difficult' by clarifying vulnerabilities and taking countermeasures.

In addition, the Biden administration has revealed that it will take sanctions against Russia's 'harmful activities abroad' including this case, and Russian diplomats who are thought to be related to information agencies 10 Deportation of people, 6 Russian companies that supported cyber attacks, 32 corporations / individuals involved in the spread of false information in the US presidential election, 8 corporations / individuals involved in the merger of Crimea, etc. We issued a presidential decree that included it.

FACT SHEET: Imposing Costs for Harmful Foreign Activities by the Russian Government | The White House
https://www.whitehouse.gov/briefing-room/statements-releases/2021/04/15/fact-sheet-imposing-costs-for-harmful-foreign-activities-by-the-russian-government/

President Biden 'National Emergency' to Exile 10 Russian Diplomats | US President Biden | NHK News
https://www3.nhk.or.jp/news/html/20210416/k10012977721000.html