Saturday, October 31, 09:16
Home security Iranian hackers are attacking corporate VPN servers around the world

Iranian hackers are attacking corporate VPN servers around the world

Iranian hackers-US-hack-aerospace and satellite-hack companies

According to her research team ClearSky, an extensive one is currently taking place hacking campaign that has affected Companies worldwide. Campaigners are Iranian hacking teams who have violated VPN servers and have "planted" bugs and backdoors. Through them, criminals have managed to gain access in networks to many companies and organizations around the world.

ClearSky researchers have revealed extensive Iranians attacks on VPN servers during the last quarter of 2019. The campaign was named Fox Kitten Campaign.

"This campaign has been running for the last three years and targets dozens of companies and organizations around the world," the company said. security.

"Through this campaign, the attackers managed to gain access and remain for a long time in the networks of numerous companies and organizations in the field of information technology, telecommunications, oil, gas, aviation, government and security ", he added.

The hackers settle malicious software, but they also target long and full acquisition control of the victims' devices.

The hacking campaign was aimed at gaining valuable information from the target organizations.

According to experts, hackers having access to the target organizations, managed to breach other companies through supply chain attacks.

hacker-Pulse Secure VPN servers

The Iranians hackers used various tools to infringe on VPN servers. Most were open-source code-based tools. Some of them were created by the hackers themselves.

Iranian APT teams have managed to steal information from dozens of companies worldwide over the last three years.

The most successful attacks have been through exploiting vulnerabilities in systems with non-updated VPN and RDP services. Vulnerabilities allow attackers to gain access to and control of systems where valuable information is stored.

After violating VPN services, the attackers install malware to gain further access to the central corporate network.

Therefore, locating and closing an access point did not necessarily stop hackers from accessing network, because they had arranged to open several "diodes" with backdoors, etc.

"Iranian APT teams have developed powerful techniques attack and are able to exploit one-day vulnerabilities in relatively short periods of time ", the researchers reported.

ClearSky discovered Iranian teams exploiting VPN vulnerabilities within hours of reporting the bugs.

According to the data that exist so far, Iranian hackers have targeted Pulse Secure, Fortinet, Palo Alto Networks and Citrix VPN to gain access to large companies.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

The Marriott breach fine was reduced to $ 23,8 million

The fine imposed by the British security observer, at the Marriott hotel unit due to data breach, was reduced by 14,4 million £ ...

How to view changes in a Microsoft PowerPoint presentation

While Microsoft 365 subscribers can collaborate in real time on a PowerPoint presentation, some prefer to work alone ...

iPhone / iPad: How to add bookmarks to multiple tabs in Safari

Safari on iPhone and iPad has a hidden feature that allows you to add bookmarks to all open sites ...

NordPass notifies you if your data has been compromised

NordPass password manager has announced a new update, which will help users find out if their data ...

How to change Screen Saver on Android TV

Android TV may not be as customizable as an Android phone, but there is still plenty you can do to ...

USA: Co-operation needed to tackle online child abuse

The Assistant Attorney General of the United States, Beth Williams, calls on all people to take action and unite for ...

Russian hackers targeted the Democratic parties of California and Indiana

The group of Russian hackers who are accused of interfering in the 2016 presidential elections in the USA, this year are accused of targeting emails ...

Educational institutions faced with spear-phishing attacks!

Educational institutions are increasingly being targeted by spear-phishing attacks, according to a new study by security company Barracuda Networks. According to...

Samsung: Find your lost cell phone with the SmartThings Find service

Today Samsung announced SmartThings Find as a free service to help you find your Galaxy phone, tablet, ...

In 2020, 36 billion files were leaked, according to a report!

The number of data breaches reported this year fell in the third quarter of the year. However, billions more files were exposed worldwide, touching ...