French Firms Rocked by Kasbah Hacker?

2020-03-02 18:07

A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned.

In 2018, security intelligence firm HYAS discovered a malware network communicating with systems inside of a French national power company.

Further investigation revealed the electricity provider was just one of many French critical infrastructure firms that had systems beaconing home to the malware network's control center.

Other victims included one of France's largest hospital systems; a French automobile manufacturer; a major French bank; companies that work with or manage networks for French postal and transportation systems; a domestic firm that operates a number of airports in France; a state-owned railway company; and multiple nuclear research facilities.

A cached copy of Yamosoft.com at archive.org says it was a Moroccan computer security service that specialized in security audits, computer hacking investigations, penetration testing and source code review.

News URL

https://krebsonsecurity.com/2020/03/french-firms-rocked-by-kasbah-hacker/

#french #hacker