Chinese-Linked Attackers Exploit Check Point Flaw to Deploy ShadowPad and Ransomware

Chinese-Linked Attackers Exploit Check Point Flaw to Deploy ShadowPad and Ransomware

/in

A previously unknown threat activity cluster targeted European organizations, particularly those in the healthcare sector, to deploy PlugX and its successor, ShadowPad, with the intrusions ultimately leading to deployment of a ransomware called NailaoLocker in some cases.
The campaign, codenamed Green Nailao by Orange Cyberdefense CERT, involved the exploitation of a new-patched security flaw

The Hacker News – ​Read More

PoC Exploit Published for Critical Ivanti EPM VulnerabilitiesWeathering the storm: In the midst of a TyphoonWeathering the storm: In the midst of a Typhoon