Some of Our Sources
- Engadget
- Simplebits
- Team Treehouse
- Spoon Graphics
- Six Revisions
- Web Designer Depot
- Crazy Leaf Design
- Web Design Ledger
- CSS Tricks
- Freelance Switch
Help Webnuz
Referal links:
September 3, 2021 03:44 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/mYCNgp3EJmE/chinese-hackers-behind-july-2021-solarwinds-zero-day-attacks
Chinese Hackers Behind July 2021 SolarWinds Zero-day Attacks
In mid-July this year, Texas-based software provider SolarWinds released an emergency security update to patch a zero-day in its Serv-U file transferring technology that was being exploited in the wild. From a report: At the time, SolarWinds did not share any details about the attacks and only said that it learned of the bug from Microsoft's security team. In a blog post on Thursday, Microsoft revealed more details about the July attacks. The company said the zero-day was the work of a new threat actor the company was tracking as DEV-0322, which Microsoft described as "a group operating out of China, based on observed victimology, tactics, and procedures." Microsoft said the group targeted SolarWinds Serv-U servers "by connecting to the open SSH port and sending a malformed pre-auth connection request," which allowed DEV-0322 operators to run malicious code on the targeted system and take over vulnerable devices. The OS maker did not go into details about what the intruders did once they breached a target. It is unclear if the hackers were interested in cyber-espionage and intelligence collection or if DEV-0322 was a run-of-the-mill crypto-mining gang.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/mYCNgp3EJmE/chinese-hackers-behind-july-2021-solarwinds-zero-day-attacks
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot