OP 20 April, 2024 - 06:30 PM
![[Image: bF9jxdd.png]](https://i.imgur.com/bF9jxdd.png)
MITRE Corporation recently disclosed a cyber attack they experienced in January 2024, joining over 1700 organizations targeted by a state-backed hacking group. The breach exploited vulnerabilities in Ivanti VPN, allowing unauthorized access to MITRE's network. MITRE responded by shutting down the affected system and launching an investigation with cybersecurity experts. They emphasized the importance of timely disclosure to improve industry security practices. MITRE highlighted four recommendations to enhance cybersecurity: secure design principles, secure supply chains, zero-trust architectures, and adversary engagement. The breach involved two zero-day vulnerabilities, enabling attackers to bypass authentication and move through networks using compromised accounts. The attackers used webshells and backdoors to maintain access and steal credentials. Mandiant attributed the attacks to an advanced persistent threat, while Volexity suggested Chinese state-sponsored involvement. The severity of the attacks led to an emergency directive from CISA to mitigate the vulnerabilities. MITRE's disclosure underscores the ongoing threat of cyber attacks and the crucial need for organizations to strengthen their defenses continually.
Source : https://thecyberexpress.com/mitre-data-b...zero-days/
![[Image: NoXfDZ2.gif]](https://i.imgur.com/NoXfDZ2.gif)
@j1n exp. 5/5/2024
----------------------------------------------
Best Certification Services Click the Banner Below
![[Image: itOX2Dq.gif]](https://i.imgur.com/itOX2Dq.gif)
@AzureGod 5/15/2024
----------------------------------------------
![[Image: zTos3Zp.gif]](https://i.imgur.com/zTos3Zp.gif)
----------------------------------------------
Make money off cracked : Beginning