President Joe Biden is urging U.S. companies to make sure their digital doors are locked tight because of “evolving intelligence” that Russia is considering launching cyberattacks against critical infrastructure targets as the war in Ukraine continues.
Biden’s top cybersecurity aide, Anne Neuberger, expressed frustration at a White House press briefing Monday that some critical infrastructure entities have ignored alerts from federal agencies to fix known problems in software that could be exploited by Russian hackers.
“Notwithstanding these repeated warnings, we continue to see adversaries compromising systems that use known vulnerabilities for which there are patches,” said Neuberger, who is the president’s deputy national security adviser for cyber and emerging technologies. “That makes it far easier for attackers than it needs to be.”
The federal government has been providing warnings to U.S. companies of the threats posed by Russian state hackers since long before the country invaded Ukraine last month. The Cybersecurity and Infrastructure Security Agency has launched a “Shields Up” campaign aimed at helping companies strengthen their defenses and has urged companies to back up their data, turn on multifactor authentication and take other steps to improve cyber hygiene.
Neuberger said there’s no intelligence suggesting a specific Russian cyberattack against U.S. targets, but she did add that there has been increase in “preparatory activity,” like scanning websites and hunting for vulnerabilities, that is common among nation-state hackers.
In a statement, Biden said Russia could launch an cyberattack against U.S. targets as retaliation for “the unprecedented economic costs we’ve imposed” on Russia through sanctions.
“It’s part of Russia’s playbook,” Biden said.
The United States and its allies have put a slew of sanctions in place aimed at crippling the Russian economy, and Biden recently announced the U.S. is sending more anti-aircraft, anti-armor weapons and drones to help Ukraine.
John Hultquist, a vice president of intelligence analysis at the cybersecurity firm Mandiant, said cyberattacks gives Russia the ability to punch back.
“Cyberattacks are a means for them to exact costs without crossing a major red line,” he said.
Russia is considered a hacking powerhouse but its offensive cyberattacks since it invaded Ukraine have been muted compared to what some feared. Russia has carried out significant cyberattacks against Ukraine in years past, including the devastating NotPetya attack in 2017 that spread far and wide and caused more than $10 billion in damage globally.
Neuberger said Russia cyberattacks against Ukraine are ongoing, though did not provide specifics. She said the Biden administration has made clear there will be consequences if Russia engages with the U.S. in cyberspace.
“We’re not looking for a conflict with Russia. If Russia initiates a cyberattack against the United States, we will respond,” she said.
The Russian embassy did not immediately respond to a request for comment.