Stealthy, persistent "BRICKSTORM" spying backdoor found in network infrastructure

Google's Threat Intelligence Group (GTIG) and Mandiant have published an analysis of the BRICKSTORM backdoor espionage ...

Google: Brickstorm malware used to steal U.S. orgs' data for over a year

Suspected Chinese hackers have used the Brickstorm malware in long-term persistence espionage operations against U.S.
The Register on MSN

Microsoft blames Medusa ransomware affiliates for GoAnywhere exploits while Fortra keeps head buried

You can't find anything bad if you don't look, right? Medusa ransomware affiliates are among those exploiting a ...

Critical vulnerability in Fortra GoAnywhere MFT probably exploited by attackers

The manufacturer is offering patches, and admins should also isolate affected systems from the Internet. Apparently there have been attacks on the vulnerability ...
The Hacker News

UNC5221 Uses BRICKSTORM Backdoor to Infiltrate U.S. Legal and Technology Sectors

BRICKSTORM was first documented by the tech giant last year in connection with the zero-day exploitation of Ivanti Connect ...
The Register on MSN

Google warns China-linked spies lurking in 'numerous' enterprises

Mandiant CTO anticipates 'hearing about this campaign for the next one to two years' Unknown intruders – likely China-linked ...
CSO Online

Chinese spies had year-long access to US tech and legal firms

Backdoor on edge devices allowed a starting point for threat actors to use lateral movement to access VMware vCenter and ESXi ...