How Did Russian Hackers Phish America’s Power Grid?
▻https://hackernoon.com/how-russian-hackers-phished-americas-power-grid-630e6ce22ebb?source=rss-
The kill chain, the #phishing attack and the broken trust graphThe Wall Street Journal published an explosive story about how state-sponsored Russian hackers used a variety of techniques and a spider web of compromised accounts to ultimately gain access to the control infrastructure that monitors and controls the flow of electricity in the US power grid.While the attack was complex and well planned, the core strategy was simple: exploit the trust graph.Instead of attacking the high-value target directly, you first get inside lower value, less protected partners — and then use simple tactics like phishing, using existing trusted relationships to compromise your final target.In short, every business relationship is a potential vulnerability.The story is as chilling as it is fascinating. It (...)