TOP-3 cybersecurity events of the week according to Jet CSIRT





Jet CSIRT specialists have again collected key information security news for you. Over the past week, a new guide to using the MITER ATT & CK knowledge base was published, a new method of cyberattacks on enterprises was discovered, and JBS paid a ransom to the REvil group. This week's news was collected by Nikita Komarov, analyst of the Center for Monitoring and Response to Information Security Incidents Jet CSIRT, Jet Infosystems.

Read more under the cut.



Updated Guide to Using the MITER ATT & CK Knowledge Base Published



The US Cyber ​​and Infrastructure Security Agency (CISA) has published a new guide to using the MITER ATT & CK knowledge base for cyber intelligence experts. The reason for the update was that, according to the agency, information security specialists do not fully use the potential of the knowledge base. The new guidance is designed to help cyber threat analysts align attackers' tactics, techniques and procedures with those of ATT & CK.



New method of cyber attacks on enterprises discovered



Kaspersky Lab specialists have discovered a new approach to attacks against large organizations. The essence of the approach is that when carrying out attacks, cybercriminals associate exploits for 0-day in Google Chrome and Windows 10. This method was first used by the PuzzleMaker grouping. With this method, cybercriminals ultimately manage to successfully execute code on their victims' devices.



JBS paid ransom to REvil



The company paid $ 11 million to prevent the publication of previously stolen data. Initially, the attackers asked for a ransom in the amount of $ 22.5 million, but after negotiations, the price was reduced to $ 11 million. As of today, a decryptor for data recovery has been handed over to JBS.



All Articles