Technology

A mysterious hacker gang is on a supply-chain hacking spree

Stylized photo of desktop computer.

Enlarge (credit: Lino Mirgeler/picture alliance via Getty Images)

A software supply-chain attack represents one of the most insidious forms of hacking. By breaking into a developer’s network and hiding malicious code within apps and software updates that users trust, supply-chain hijackers can smuggle their malware onto hundreds of thousands—or millions—of computers in a single operation, without the slightest sign of foul play. Now what appears to be a single group of hackers has managed that trick repeatedly, going on a devastating supply-chain hacking spree—and the hackers have become more advanced and stealthy as they go.

Over the past three years, supply-chain attacks that exploited the software distribution channels of at least six different companies have now all been tied to a single group of likely Chinese-speaking hackers. The group is known as Barium, or sometimes ShadowHammer, ShadowPad, or Wicked Panda, depending on which security firm you ask. More than perhaps any other known hacker team, Barium appears to use supply-chain attacks as its core tool. Its attacks all follow a similar pattern: seed out infections to a massive collection of victims, then sort through them to find espionage targets.

Read 18 remaining paragraphs | Comments

Source link

قالب وردپرس

Related posts

Meross 3-Way Smart Wi-Fi Wall Switch with HomeKit is now available

MasMaz

ET Deals: Dell 34-Inch Ultrawide Curved 2K Monitor for $647, Dell Inspiron 15 5593 w/ 512GB SSD for $649

MasMaz

Google Translate just got an upgrade thanks to better offline support

MasMaz
50 % Coupon CodeRedeem now