APTs target MSP access to customer networks – Week in security with Tony Anscombe | WeLiveSecurity

The
recent
compromise
of
the
networks
of
several
companies
via
the
abuse
of
a
remote
access
tool
used
by
MSPs
exemplifies
why
state-aligned
threat
actors
should
be
on
the
radars
of
IT
service
provid

APTs target MSP access to customer networks – Week in security with Tony Anscombe | WeLiveSecurity

The
recent
compromise
of
the
networks
of
several
companies
via
the
abuse
of
a
remote
access
tool
used
by
MSPs
exemplifies
why
state-aligned
threat
actors
should
be
on
the
radars
of
IT
service
providers

Managed
service
providers
(MSPs)
that
don’t
consider
themselves
targets
for
state-aligned
threat
actors
may
need
to
think
again.
While
many
people
may
associate
advanced
persistent
threat
(APT)
groups
with
cyberespionage
targeting
only
state
agencies
and
large
corporations,
the
fact
is
that
some
of
these
groups
have
increasingly
been
setting
their
sights
on
managed
service
providers
(MSPs)
with
an
eye
towards
ultimately
targeting
their
customers.

Case
in
point:
earlier
this
week,
we
wrote
about
how
an
Iran-aligned
APT
group
called

MuddyWater
had
gained
access

to
the
networks
of
several
companies
by
abusing
a
remote
access
tool
used
by
MSPs.

About Author

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.