Expert(s): ISBuzz Staff | Informationsecuritybuzz.com »
Palo Alto Networks reported Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer. The report details malicious actors using previously patched techniques discussed in a Sept. 16th CISA Alert and tracks attacks beginning one day after the Alert was released and continuing into October. The attacks targeted critical sectors, including defense, healthcare, energy, technology, and education. Several of the tools used were of known Chinese origins.
External Link: State Hackers Breach Nine After CISA Alert Warns Of Exploits