Protecting facilities: Iranian cyber actor’s Brute Force and credential access activity

In October 2024, Canadian, United States and Australian security agencies released a joint cybersecurity advisory regarding Iran’s tactics, techniques, and procedures to compromise critical infrastructure organizations, including healthcare and public health.

Technical details and mitigation guidance have been provided in the cybersecurity advisory which will help your organization enhance its cybersecurity posture.

To access the advisory, please visit the following link.

What should you do?

•         read the cybersecurity advisory.
•         share the advisory with IT personnel.
•         for more information or to report an incident, contact the Canadian Centre for Cyber Security.

If you suspect a cyber crime, you can report it to the Royal Canadian Mounted Police’s Federal Policing National Security – National Critical Infrastructure Team via sir-sis@rcmp-grc.gc.ca (not monitored 24/7). For any imminent threat and risk to life, contact 911 or local police of jurisdiction.