Cyber attackers are using malware to target enterprise Juniper Networks routers in an operation named J-Magic. Focusing on organizations in Europe, South America’s manufacturing, semiconductor, IT, and energy sectors, the malware facilitates a cd00r variant, allowing device takeover, data infiltration, and further malware compromise. The attacks, strikingly similar to previous SeaSpy intrusions, pinpoint network infrastructure appliances with weaker defenses.

FIN7 Deploys Anubis Backdoor to Hijack Windows Systems via Compromised SharePoint Sites
The Russian cybercrime group FIN7 is linked to a Python-based backdoor named Anubis, providing them remote access to compromised Windows systems, says Swiss cybersecurity firm