Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed | allinfosecnews.com

June 17, 2022, 11 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

China-linked threat actors exploited the zero-day flaw CVE-2022-1040 in Sophos Firewall weeks before it was fixed by the security vendor. Volexity researchers discovered that the zero-day vulnerability, tracked as CVE-2022-1040, in Sophos Firewall was exploited by Chinese threat actors to compromise a company and cloud-hosted web servers it was operating. The vulnerability was exploited by […]

The post Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed appeared first on Security Affairs.

apt breaking news china chinese cve-2022-1040 firewall hacking hacking news information security news intelligence it information security malware pierluigi paganini sophos sophos firewall

More from securityaffairs.co / Security Affairs

Google fixed critical Chrome vulnerability CVE-2024-4058 5 hours ago | securityaffairs.co

attacker breaking news browser can +22

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks 16 hours ago | securityaffairs.co

actor adaptive security apt arcanedoor +32

Hackers hijacked the eScan Antivirus update mechanism in malware campaign 23 hours ago | securityaffairs.co

antivirus avast backdoors breaking news +27

US offers a $10 million reward for information on four Iranian nationals 1 day, 6 hours ago | securityaffairs.co

10 million assets breaking news contractors +26

The street lights in Leicester City cannot be turned off due to a cyber attack 1 day, 6 hours ago | securityaffairs.co

attack authority breaking news city +14

North Korea-linked APT groups target South Korean defense contractors 1 day, 18 hours ago | securityaffairs.co

agency andariel apt apt groups +29

U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity 2 days, 5 hours ago | securityaffairs.co

business commercial commercial spyware department +19

A cyber attack paralyzed operations at Synlab Italia 2 days, 6 hours ago | securityaffairs.co

april attack breaking news cyber +15

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw 2 days, 16 hours ago | securityaffairs.co

apt apt28 blizzard breaking news +24

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Cyber Systems Administration

@ Peraton | Washington, DC, United States

View on infosec-jobs.com

Android Security Engineer, Public Sector

@ Google | Reston, VA, USA

View on infosec-jobs.com

Lead Electronic Security Engineer, CPP - Federal Facilities - Hybrid

@ Black & Veatch | Denver, CO, US

View on infosec-jobs.com

Profissional Sênior de Compliance & Validação em TI - Montes Claros (MG)

@ Novo Nordisk | Montes Claros, Minas Gerais, BR

View on infosec-jobs.com

Principal Engineer, Product Security Engineering

@ Google | Sunnyvale, CA, USA

View on infosec-jobs.com