"Chinese Hackers Compromised an ISP to Deliver Malicious Software Updates"

According to researchers at Volexity, the Advanced Persistent Threat (APT) group "StormBamboo" compromised an Internet Service Provider (ISP) to poison Domain Name System (DNS) queries and deliver malware to organizations. The Chinese-speaking cyber espionage threat actor, also known as "Evasive Panda" and "StormCloud," typically compromises third parties to breach targets. This article continues to discuss StormBamboo's compromise of an ISP to deliver malicious software updates.

Help Net Security reports "Chinese Hackers Compromised an ISP to Deliver Malicious Software Updates"

Submitted by grigby1
 

Submitted by Gregory Rigby on