Friday, January 22, 00:26
Home security Avast: Hackers breached internal network by blocking VPN profiles

Avast: Hackers breached internal network by blocking VPN profiles

AvastCybersecurity company software development, Avast, revealed that its interior network was violated by hackers.

The company said that the target of the attack was probably the insert malware into CCleaner software. 2017 had a similar incident.

How did the violation occur?

According to Avast, hackers violated VPNs credentials a company employee. In this way, they gained access to an account that was not protected.

The company discovered the breach on 23 September. Immediately, it began an investigation and found evidence that the attackers had been targeting the company's systems since 14 May 2019.

"The user whose credentials were violated did not have domain administrator rights. However, through a successful privilege escalation attack"The attacker was able to gain administrator privileges," said Jaya Baloo, Avast's head of information security.

According to Baloo, the company has activated the violated VPN profile to monitor the attacker's activities.

This lasted until 15 October, when the company released a new update of its CCleaner.

In addition, Avast changed the digital certificate used for CCleaner updates. The company considered that this change was necessary if the hackers had managed to obtain the old certificate at infringement of the network.

"Having taken all these precautions, we are sure that users CCleaner are protected and unaffected, "said Baloo.

The company, based in the Czech Republic, works with the police, the Czech intelligence agency, the Security Information Service (BIS) and a private company for the investigation of a violation.

Avast believes that the attackers were experienced hackers but it is not certain whether it is the team itself that attacked the company 2017.

"From the information we have gathered so far, it is clear that this was an extremely complex attack against us that was intended to leave no trace of the invader. The attackers "They proceeded with extreme caution so as not to be detected," Baloo said.

The investigation is ongoing. Avast said it would let you know if it learned of any new items. In 2017, he had published several updates on the breach incident and was considered commendable for speaking openly and in detail on the subject.

2017, the attackers had 'planted' malware in CCleaner, in violation of a account TeamViewer. According to Avast, about 2,27 millions of users had downloaded the corrupted CCleaner software.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Mac: How to see which model you have and when it was released

When you need support for your Mac - or want to install some kind of upgrade - you usually need to know the exact ...
00:02:35

Bill Gates: Will he work with Biden on COVID-19 / climate change?

Microsoft co-founder Bill Gates said on Twitter that he is looking forward to working with the new US President, Joe Biden, and ...

What are the rumors circulating about the iPhone 13?

Apple iPhone 13 will have a redesigned Face ID system that will have a smaller notch at the top of the screen, ...

Biden: How was the political transition in the US captured on social media?

As Joe Biden was sworn in as President of the United States, this important political transition was captured on popular social media. On January 20, ...

CentOS ceases to be supported but RHEL is offered for free

Last month, Red Hat caused a great deal of concern in the Linux world when it announced the discontinuation of CentOS Linux.

Microsoft Office 365 employee passwords leaked online!

A new large-scale phishing campaign targeting global organizations has been found to bypass Microsoft Office 365 Advanced Threat Protection (ATP) and ...

COSMOTE and Microsoft provide new cloud solutions for businesses

COSMOTE and Microsoft expand their cooperation, offering even more advanced and high quality cloud solutions, in large and small ...

Cyber ​​attacks in Eastern Europe are on the rise!

The cyber-attacks that have taken place in many US government agencies and companies in recent months have caused concern in the developing countries of ...

Tesla reduces the prices of the Model 3 in Europe

Tesla has reduced the prices of the Model 3 in many European markets, which reductions could be partly linked ...

iOS, Android, XBox users in the crosshairs of a new malvertising campaign

Recently a new malvertising campaign was discovered that targets users of mobile and other connected devices and uses effective ...