French application provider Centreon has hit back at a report from the country’s cybersecurity agency that its merchandise were being hijacked in a Russian cyber-campaign, professing that no spending clients had been affected.
The firm, which produces IT monitoring software program not in contrast to SolarWinds, was at the heart of a report from the French Countrywide Agency for the Security of Facts Systems (ANSSI) this 7 days.
Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.
Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).
➤ Activate Your Coupon Code
It claimed that the notorious Sandworm group, responsible for damaging attacks against Ukrainian electricity providers in prior many years, experienced qualified IT and web hosting corporations from 2017 to 2020.
The group is claimed to have dropped a version of the P.A.S. web shell and the Exaramel backdoor Trojan to get remote handle of “several Centreon servers exposed to the internet.”
However, in an update yesterday, the IT seller clarified that the marketing campaign only specific legacy open up supply variations of its software program, at all around 15 organizations.
“The marketing campaign described by ANSSI solely concerns out of date versions of Centreon’s open resource program. Without a doubt, the ANSSI specifies that the most new model concerned by this campaign is model 2.5.2, released in November 2014,” it claimed.
“This model is not only no for a longer period supported for extra than five years, but has apparently also been deployed without the need of respect for the security of servers and networks, like connections outside the entities worried. Because this model, Centreon has released eight big versions.”
Centreon also made it apparent that it had not been dependable for unwittingly distributing malicious code alone in a source chain-fashion attack equivalent to SolarWinds.
As nicely as the BlackEnergy attacks in Ukraine, Sandworm has in the previous been joined to cyber-espionage strategies against NATO associates and European governments in 2019. Additional suitable nevertheless ended up the attacks it released from Exim email servers final 12 months.
Some pieces of this short article are sourced from:
www.infosecurity-magazine.com