A previously unknown threat cluster has been linked to a software supply chain attack targeting organizations in Hong Kong and other regions in Asia.
The Symantec Threat Hunter Team, part of Broadcom, is tracking the activity under the moniker Carderbee.
According to Syamtec, the attackers use both a supply-chain attack and signed malware to carry out their activity in an attempt to stay under the radar.
The malicious software was delivered to the following location on infected computers: ‘csidl_system_drive\program files\esafeenet\cobra docguard client\update,’ Syamcaltec said.
They leverage both a trade-charm attack and signing malware to achieve their goal.
It is unknown at this stage what the attackers’ method of operation is.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply