Backdoor Found in Server Management Software
Popular sever management software from NetSarang has become the victim of a cyberattack that involved a backdoor that lasted for 17 days.
Dubbed ShadowPad, the secret backdoor allows hackers to control networks hidden behind legit cryptographically signed software sold by the company. The software is used by hundreds of banks, media firms, energy companies, pharmaceutical firms, telecommunication providers, transportation and more.
According to researchers at Kaspersky Labs, who discovered this well-hidden backdoor, someone managed to hijack the NetSarang’s update mechanism and silently insert the backdoor in the software update, so that the malicious code would silently deliver to all of its clients with NetSarang’s legitimate signed certificate.
Return To Article
