Cargando…
A deep dive into Avivore
Until now, most prominent supply chain intrusions have been vertical attacks, with the initial victims typically managed service providers (MSPs) or vendors targeted as a way of getting into and moving up or down the supply chain. However, incidents earlier this year targeting large multi-national f...
Autor principal: | |
---|---|
Formato: | Online Artículo Texto |
Lenguaje: | English |
Publicado: |
Elsevier Ltd.
2020
|
Materias: | |
Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7434301/ http://dx.doi.org/10.1016/S1361-3723(20)30085-3 |
Sumario: | Until now, most prominent supply chain intrusions have been vertical attacks, with the initial victims typically managed service providers (MSPs) or vendors targeted as a way of getting into and moving up or down the supply chain. However, incidents earlier this year targeting large multi-national firms in the aerospace and defence sectors can best be described as horizontal. Advanced attackers have been leveraging relationships and connectivity between suppliers and partners to get a foothold in each other's value chains. However, recent incidents targeting large multi-national firms in aerospace and defence can best be described as horizontal. Attackers have leveraged connectivity between suppliers and partners to get a foothold in each other's value chains. Oliver Fay of Context Information Security details a new threat group, codenamed Avivore, that has been compromising collaborative working solutions to bypass well-defended perimeters. |
---|