Insecure VPN profile allowed hackers to breach Avast antivirus network
Through the use of compromised credentials via a temporary VPN account, Hackers were able to access the internal network of the cybersecurity company Avast where they likely intended to launch a supply chain attack targeting CCleaner.
According to the firm’s CISO, Jaya Baloo who published a blog post with more information about the incident, the attack appears to be an “extremely sophisticated attempt”
Avast is referring to this attempt by the name “Abiss” and the company says that the threat actor behind it was extremely cautious in an attempt to avoid being detected while hiding their true intentions.
Logs of suspicious activity show that the hackers tried to access its internal network on May 14 and 15, July 24, September 11 and again on October 4. The intruder connected from a public IP address in the UK a
Be the first to write a comment.