APTs target MSP access to customer networks – Week in security with Tony Anscombe

Cyber Security

The recent compromise of the networks of several companies via the abuse of a remote access tool used by MSPs exemplifies why state-aligned threat actors should be on the radars of IT service providers

Managed service providers (MSPs) that don’t consider themselves targets for state-aligned threat actors may need to think again. While many people may associate advanced persistent threat (APT) groups with cyberespionage targeting only state agencies and large corporations, the fact is that some of these groups have increasingly been setting their sights on managed service providers (MSPs) with an eye towards ultimately targeting their customers.

Case in point: earlier this week, we wrote about how an Iran-aligned APT group called MuddyWater had gained access to the networks of several companies by abusing a remote access tool used by MSPs.

Products You May Like

Articles You May Like

THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 04 – Nov 10)
CISOs Turn to Indemnity Insurance as Breach Pressure Mounts
Palo Alto Networks Confirms New Zero-Day Being Exploited by Threat Actors
Massive Telecom Hack Exposes US Officials to Chinese Espionage
Researchers Warn of Privilege Escalation Risks in Google’s Vertex AI ML Platform

Leave a Reply

Your email address will not be published. Required fields are marked *