Top news of the week: 21.04.2022.
Mitre Attack
Lazarus Targets Chemical Sector With 'Dream Jobs,' Then Trojans
Chemical companies are the latest to be targeted by the well-known North Korean group, which has targeted financial firms, security researchers, and technology companies in the past.
Security Doesn’t Stop at the First Alert: Falcon X Threat Intelligence Offers New Context in MITRE ATT&CK Evaluation
The CrowdStrike Falcon® exposes all attack tactics used as part of the MITRE Engenuity ATT&CK Enterprise Evaluation released in April 2022.
From Passive Recovery to Active Readiness
This is the shift that companies need to make after a cyberattack.
Okta Wraps Up Lapsus$ Investigation, Pledges More Third-Party Controls
Companies must enforce more security on their own third-party providers and retain the ability to conduct independent investigations, experts say.
More Than Half of Initial Infections in Cyberattacks Come Via Exploits, Supply Chain Compromises
Mandiant data also shows a dramatic drop in attacker dwell time on victim networks in the Asia-Pacific region — to 21 days in 2021 from 76 days in 2020.
Wind turbine firm Nordex hit by Conti ransomware attack
The Conti ransomware operation has claimed responsibility for a cyberattack on wind turbine giant Nordex, which was forced to shut down IT systems and remote access to the managed turbines ...
First Steps to Overcoming a Lack of Asset Visibility
Asset visibility requires understanding which types of devices exist in your environments and what they mean to your security program.
MITRE Engenuity Launches New MITRE ATT&CK Defender™ Purple Teaming Initiatives and Cyber Range
(April 19, 2022) — MITRE Engenuity, MITRE’s tech foundation for public good, announced that MITRE ATT&CK DefenderTM (MAD), the cybersecurity community’s MITRE ATT&CK® training and …