Bleeping Computer

‘PlushDaemon’ hackers hijack software updates in supply-chain attacks

A China-linked threat actor tracked as 'PlushDaemon' is hijacking software update traffic using a new implant called EdgeStepper in cyberespionage operations. Since 2018, PlushDaemon hackers have ...
Hosted on MSN

IPv6 networking feature hit by hackers to hijack software updates

Chinese threat actor TheWizards observed running a SLAAC attack since 2022 The attack delivers tainted software updates Most victims are in China, Hong Kong, the Philippines, and UAE A threat actor ...
Dark Reading

China's 'PlushDaemon' Hackers Infect Routers to Hijack Software Updates

For more than half a decade now, a Chinese state-aligned threat actor has been spying on Chinese organizations by infecting their trusted software updates. When the SolarWinds breach was unearthed in ...

Hackers exploit WhatsApp device-linking feature to hijack accounts

Hackers can hijack WhatsApp accounts without ever cracking passwords or encryptionGhostPairing attacks exploit legitimate device-linking features to gain full account accessUsers are tricked by fake ...
Bleeping Computer

Hackers abuse IPv6 networking feature to hijack software updates

A China-aligned APT threat actor named "TheWizards" abuses an IPv6 networking feature to launch adversary-in-the-middle (AitM) attacks that hijack software updates to install Windows malware.