Security News > 2024 > July > South Korean ERP Vendor's Server Hacked to Spread Xctdoor Malware
2024-07-03 03:33
An unnamed South Korean enterprise resource planning (ERP) vendor's product update server has been found to be compromised to deliver a Go-based backdoor dubbed Xctdoor. The AhnLab Security Intelligence Center (ASEC), which identified the attack in May 2024, did not attribute it to a known threat actor or group, but noted that the tactics overlap with that of Andariel, a sub-cluster within the
News URL
https://thehackernews.com/2024/07/south-korean-erp-vendors-server-hacked.html
Related news
- Baddies hijack Korean ERP vendor's update systems to spew malware (source)
- International Malware Takedown Seized 100+ Servers (source)
- T-Mobile denies it was hacked, links leaked data to vendor breach (source)
- Indian Software Firm's Products Hacked to Spread Data-Stealing Malware (source)
- Hackers attack HFS servers to drop malware and Monero miners (source)