Homeland Security Issues Warning on Cyberattack Campaign
The Department of Homeland Security is warning IT services providers, healthcare organizations and three other business sectors about a sophisticated cyberattack campaign that involves using stolen administrative credentials and implanting malware, including PLUGX/SOGU and RedLeaves, on critical systems. PlugX, a well-known espionage tool in use by several threat actors; RedLeaves, a newly developed, fully-featured backdoor, first used by APT10 in recent months. Mac McMillan,