China-backed Advanced Persistent Threat (APT) group PlushDaemon has been infiltrating legitimate update channels on a popular South Korean VPN, according to cybersecurity firm ESET. The group has replaced genuine installers with trojan versions that plant SlowStepper, a sophisticated backdoor capable of extensive surveillance and data collection, into the software. The attack avoided widespread damage due to ESET alerting the VPN operator. Experts believe PlushDaemon has been active since 2019.

Rest, AustralianSuper Among Funds Hit By Cyberattack
Australia’s largest superannuation funds, including AustralianSuper, REST, Australian Retirement Trust, and Hostplus, have suffered from a coordinated cyber attack, with around 8,000 accounts breached. Hackers