The J-magic malware campaign stealthily targeted Juniper enterprise-grade routers, turning them into points of entry to corporate networks. Operating from mid-2023 to mid-2024, targets included semiconductor, energy, manufacturing, and IT sectors. The malware renamed itself to blend in, then awaited a “magic packet” from the cyber attacker to open a backdoor. Lumen’s Black Lotus Labs detected the increasing trend of “magic packet” malware, highlighting difficulty in detection and increasing awareness of this technique.
Chinese PlushDaemon APT Targets S. Korean IPany VPN with Backdoor
China-backed Advanced Persistent Threat (APT) group PlushDaemon has been infiltrating legitimate update channels on a popular South Korean VPN, according to cybersecurity firm ESET. The
