Oppkalt tre amerikanske antivirusprodusenter, hakket ved Fxmsp bånd

Cybercriminal eller nettkriminelle under nick Fxmsp, har stjålet og lagt ut for salg kildekoder antivirusprodukter og annen konfidensiell informasjon.

ENbout it recently rapportert Trojan–Killer. På grunn av sikkerhetshensyn, Navnene på de berørte leverandørene er ikke offentliggjort.

likevel, BleepingComputer portal managed to get from Internet-security company AdvIntel exclusive unedited evidence that disclosed Fxmsp victims.

AdvIntel collected information about Fxmsp band activity and working with it sellers (majorly Russian-speaking).

Spesielt, researchers intercepted correspondence where group participants discussed sales of stolen data. In messages discussed source codes of Symantec, McAfee Og trend Micro.

Correspondence (in Russian) where group participants discussed sales of stolen data
Correspondence (in Russian) where group participants discussed sales of stolen data

AdvIntel specialists say that at their disposal is full correspondence of Fxmsp participants where mentioned Symantec, McAfee, Trend Micro and other vendors, actives footage that was used by cybercriminals in this operation, and examples of source codes from at least one affected company.

“A fourth antivirus company may also have been hacked, but it’s name and location remain unknown”, — reported AdvIntel representative.

According to content of messages, attackers stolen data through the vulnerability. They managed to invade in local corporate network and vendors were not aware about hijacking of their data. As movement inside the network was performed through legitimate Team Viewer Og AnyDesk programvare, installed security solutions were not alarmed.

“Everything was quiet. If they would know that somethings was missing, it would be only in case of leaking this information in the Internet”, – said in one of the messages.

AdvIntel connected with all mentioned above producers and reported about an incident.

I utgangspunktet Symantec denied that received any notifications from AdvIntel but later assured users that there is no security threat.

I følge trend Micro notification, cybercriminals managed to get access to one of company’s contractors laboratory and steal non-critical information about software debugging. Users’ data and source codes were not stolen, assure in Trend Micro.

McAfee ignored AdvIntel notification.

Kilde: https://www.bleepingcomputer.com

Om Trojan Killer

Carry Trojan Killer Portable på minnepinne. Vær sikker på at du er i stand til å hjelpe din PC motstå eventuelle cyber trusler uansett hvor du går.

Sjekk også

MageCart på Heroku Cloud Platform

Forskere fant flere MageCart Web Skimmers På Heroku Cloud Platform

Forskere ved Malwarebytes rapportert om å finne flere MageCart web skimmere på Heroku Cloud Platform …

Android spyware CallerSpy

CallerSpy spyware masker som en Android-chat program

Trend Micro eksperter oppdaget malware CallerSpy, som masker som en Android-chat program og, …

Legg igjen et svar