However, the analysis showed that the investigated sample also contained an embedded DLL file. Malicious code execution, propagating other MAX files on Windows systems, and loading infected files into the software can be possible. Maliciously affected Autodesk 3Ds Max Plugin usedĪutoDesk already informed users about the “PhysXPluginMfx” MAXScript exploit that potentially can lead to corrupted 3ds Max settings.
APT-style hacker group infiltrates the system of targeted companies and exfiltrates needed information undetected. The group behind this campaign was found using sophisticated hacking tools and providing services to various customers that need financial details about high-value contracts. This attack likely falls under the same category. Īs per reports in the past, APT mercenary groups have been used for cyberespionage by private competing companies seeking financial information or negotiation details for high-profile contracts. This is why hackers-for-hire got created and is still popular. This espionage is used to get information from competing private companies, so confidential information helps to take them down. This is how traffic from malware samples in various countries get recorded and suggest other targets. Threat creators focused on infrastructure based on C&C servers, in South Korea.
The investigation showed that the unnamed victim is associated with real-estate developers in the U.S, the U.K, and Australia. Companies across the globe got targeted by this, what seems to be, a new hacker group. Various companies got targeted by this group with malware that can steal proprietary information. Report surfaced about the APT hacker-for-hire operations and techniques used for industrial espionage. Hackers-for-hire group collecting information from companies to help competing firms to gain advantage.
APT hackers exploit 3Ds Max software to compromise computers of a luxury architecture firm
0 kommentar(er)
