Hackers used an antivirus service, eScan, to spread malware for five years by exploiting its HTTP update protocol. Unknown attackers linked to North Korea replaced a genuine update with malware that infected users with advanced backdoor software. The attackers used various coding techniques to avoid detection. Researchers from Avast discovered the breach and eScan confirmed it had been fixed. The GuptiMiner malware has been active since 2018 and may be connected to the North Korean group Kimsuky.
Fred Hutch notifies more patients of November 2023 attack
In December 2023, a cyberattack hit the Fred Hutchinson Cancer Center (Fred Hutch), resulting in the exfiltration of patient data and attempted extortion. Threat actors,