The vulnerability impacts versions of Versa Director prior to 22.1.4, and Versa Networks recommends that impacted users update to the fixed version as soon as possible.
Cisco Talos researchers found a remote access trojan called “MoonPeak,” which is being used in North Korean-linked campaigns.
APT41 compromised multiple organizations in the shipping and logistics, media, technology and automotive sectors.
Decipher’s Lindsey O’Donnell-Welch and Mandiant analysts Dan Black and Gabby Roncone reflect on the most pivotal moments from Sandworm over the last decade, from NotPetya to the Ukraine electric power grid attacks.
Recent activity by the well-known Sandworm group - which researchers with Mandiant have started calling APT44 - relies on a mix of espionage efforts and hacktivist personas.