Security News > 2025 > January > PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack
2025-01-22 08:49
A previously undocumented China-aligned advanced persistent threat (APT) group named PlushDaemon has been linked to a supply chain attack targeting a South Korean virtual private network (VPN) provider in 2023, according to new findings from ESET. "The attackers replaced the legitimate installer with one that also deployed the group's signature implant that we have named SlowStepper – a
News URL
https://thehackernews.com/2025/01/plushdaemon-apt-targets-south-korean.html
Related news
- China-aligned PlushDaemon APT compromises supply chain of Korean VPN (source)
- IPany VPN breached in supply-chain attack to push custom malware (source)
- OpenWrt orders router firmware updates after supply chain attack scare (source)
- Update your OpenWrt router! Security issue made supply chain attack possible (source)
- Ultralytics Supply-Chain Attack (source)
- 390,000 WordPress accounts stolen from hackers in supply chain attack (source)
- Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack (source)
- It's only a matter of time before LLMs jump start supply-chain attacks (source)
- Supply chain attack hits Chrome extensions, could expose millions (source)