Cargando…

A deep dive into Avivore

Until now, most prominent supply chain intrusions have been vertical attacks, with the initial victims typically managed service providers (MSPs) or vendors targeted as a way of getting into and moving up or down the supply chain. However, incidents earlier this year targeting large multi-national f...

Descripción completa

Detalles Bibliográficos
Autor principal: Fay, Oliver
Formato: Online Artículo Texto
Lenguaje:English
Publicado: Elsevier Ltd. 2020
Materias:
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7434301/
http://dx.doi.org/10.1016/S1361-3723(20)30085-3
Descripción
Sumario:Until now, most prominent supply chain intrusions have been vertical attacks, with the initial victims typically managed service providers (MSPs) or vendors targeted as a way of getting into and moving up or down the supply chain. However, incidents earlier this year targeting large multi-national firms in the aerospace and defence sectors can best be described as horizontal. Advanced attackers have been leveraging relationships and connectivity between suppliers and partners to get a foothold in each other's value chains. However, recent incidents targeting large multi-national firms in aerospace and defence can best be described as horizontal. Attackers have leveraged connectivity between suppliers and partners to get a foothold in each other's value chains. Oliver Fay of Context Information Security details a new threat group, codenamed Avivore, that has been compromising collaborative working solutions to bypass well-defended perimeters.