Havex is a Remote Access Trojan (RAT) that has been used in the Global Energy Sector Intrusion Campaign that started around the year 2013 and has been reported on by Seqred in its previous blog entries earlier this year – after Alert (AA22-083A), the Cybersecurity Advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA) on the 24th March this year.

Today we continue by presenting Havex’s Tactics & Techniques mapped to the ATT&CK for Enterprise framework together with mitigations.

About this article

This article was based on a Cybersecurity Advisory by CISA. You can read the full CSA here.

Powiązane wpisy

Dodaj komentarz