A leading security firm has warned of a new cyber attack campaign targeting businesses and organizations around the world.
The campaign, dubbed “Operation ShadowHammer”, is believed to have been active since at least August 2018 and is believed to have been used to target organizations in at least 30 countries.
The attack is believed to have been carried out by a group of hackers known as “ShadowHammer”, who are believed to be linked to the Chinese government.
The attack works by using malicious software, known as a “backdoor”, to gain access to a target’s computer system. Once inside, the attackers can then steal data, install additional malware, or even take control of the system.
The security firm, Kaspersky Lab, has warned that the attack is “highly sophisticated” and is “one of the most advanced supply-chain attacks ever seen”.
The attack is believed to have been carried out by exploiting a vulnerability in the ASUS Live Update software, which is used to update the company’s products.
The attackers are believed to have used the vulnerability to install malicious code on the computers of unsuspecting users.
Kaspersky Lab has warned that the attack is still ongoing and that organizations should take steps to protect themselves.
These steps include ensuring that all software is up to date, using strong passwords, and monitoring for suspicious activity.
Organizations should also be aware of the potential for similar attacks in the future, as the attackers may have access to other vulnerabilities that could be exploited.
The attack is a stark reminder of the importance of cybersecurity and the need for organizations to take steps to protect themselves from cyber threats.
