The Cybersecurity and Infrastructure Security Agency (CISA) last week released a joint report with the Federal Bureau of Investigation (FBI) warning of cyber-attacks using The Onion Router (Tor).
Tor is software that allows users to browse the web anonymously by encrypting and routing requests through multiple relay layers or nodes. While this software can be used legally to protect individuals who wish their information to remain anonymous on the internet, cyber threat actors can use Tor software and network infrastructure for anonymity and obfuscation purposes to clandestinely conduct malicious cyber operations.
According to the report:
CISA and the FBI recommend that organizations assess their individual risk of compromise via Tor and take appropriate mitigations to block or closely monitor inbound and outbound traffic from known Tor nodes.
