Advertisement
Top
image credit: Adobe Stock

Carderbee Attacks: Hong Kong Organizations Targeted via Malicious Software Updates

August 22, 2023

Via: The Hacker News
Category:

A previously undocumented threat cluster has been linked to a software supply chain attack targeting organizations primarily located in Hong Kong and other regions in Asia.

The Symantec Threat Hunter Team, part of Broadcom, is tracking the activity under its insect-themed moniker Carderbee.

The attacks, per the cybersecurity firm, leverage a trojanized version of a legitimate software called EsafeNet Cobra DocGuard Client to deliver a known backdoor called PlugX (aka Korplug) on victim networks.

Read More on The Hacker News

RELATED PUBLICATIONS

North Korean Hackers Hijack Antivirus Updates for Malware Delivery
Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage
Dangerous ICS Malware Targets Orgs in Russia and Ukraine

Latest Publications

NCSC CTO: Broken market must be fixed to usher in new tech
EU probes Meta over its provisions for protecting children
Improving cyber defense with open source SIEM and XDR
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!