Brute-Force Operations Targeting VPNs Across Critical Industrial Sectors

11 Pages

Dragos identified malicious brute‑force activity targeting VPN appliances across multiple critical infrastructure sectors in North America, including electric, oil and gas, water and wastewater, and manufacturing. The behavior indicates early‑stage reconnaissance aimed at gaining initial access to Cisco SSL VPNs. Attackers used broad scanning, credential‑stuffing attempts, and distributed infrastructure to probe victims. The activity poses risks to OT networks if attackers pivot from compromised IT systems. Dragos recommends immediate mitigations, including enforcing MFA, tightening access controls, monitoring for unusual authentication attempts, and applying critical controls to reduce exposure.

Join for free to read

Case Study Brute Force Attack Protection

Vendor Sheet Stop Brute Force Attacks Before They Disrupt Access

Vendor Sheet VOLTZITE Espionage Operations Targeting U.S. Critical Systems

White Paper Sustainability in the High Tech and Industrial Manufacturing…

More from Dragos

Vendor Sheet VOLTZITE Espionage Operations Targeting U.S. Critical Systems

Infographic Ransomware: The #1 Threat Targeting Manufacturers Worldwide

White Paper PIPEDREAM: CHERNOVITE’S EMERGING MALWARE TARGETING INDUSTRIAL…

Report OT CYBERSECURITY THE 2023 YEAR IN REVIEW

Ebook

Brute-Force Operations Targeting VPNs Across Critical Industrial Sectors

Brute-Force Operations Targeting VPNs Across Critical Industrial Sectors

You Might Also Like

More from Dragos