APTs Targeting IT Service Provider Customers

The National Cybersecurity and Communications Integration Center (NCCIC) has received multiple reports of advanced persistent threat (APT) actors actively exploiting trust relationships in information technology (IT) service provider networks around the world.

NCCIC encourages users and administrators to review TA18-276A: Using Rigorous Credential Control to Mitigate Trusted Network Exploitation and TA18-276B: Advanced Persistent Threat Activity Exploiting Managed Service Providers, and the page on APTs Targeting IT Service Provider Customers for more information.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts.

We recently updated our anonymous product survey; we'd welcome your feedback.