Airbus Hit By Series of Cyber Attacks On Suppliers (Sep 26, 2019)
According to the French news channel France24, security sources have revealed that a number of organisations in the Airbus supply chain have been targeted with cyber attacks. It is believed that the actors were attempting to capture sensitive industry information. Several sources believe that the activity is likely to have originated from Chinese threat actor APT10.
Recommendation: Threat actors are willing to go to great lengths to abuse trust relationships in supply-chain attacks. Organisations have to contend sometimes with quite large and complex supply chains, but must make efforts to ensure their chosen suppliers are following information security standards. Defense-in-depth is the best way to ensure safety from APTs. Defense-in-Depth involves the layering of defence mechanisms. This can include network and end-point security, social engineering training (such as training exercises to help detect phishing emails) for staff and robust threat intelligence capabilities.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.