Havex’s Tactics and Techniques in the Enterprise domain + mitigations
Havex is a Remote Access Trojan (RAT) that has been used in the Global Energy Sector Intrusion Campaign that started around the year 2013 and has been reported on by Seqred in its previous blog entries earlier this year – after Alert (AA22-083A), the Cybersecurity Advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA) on the 24th March this year.
Today we continue by presenting Havex’s Tactics & Techniques mapped to the ATT&CK for Enterprise framework together with mitigations.
About this article
This article was based on a Cybersecurity Advisory by CISA. You can read the full CSA here.