Early backdoor implantation leveraged by Lorenz ransomware | allinfosecnews.com

Jan. 11, 2023, 11:27 p.m. | SC Staff

SC Magazine feed for Threats www.scmagazine.com

BleepingComputer reports that the Lorenz ransomware operation exploited a critical Mitel telephony infrastructure vulnerability, tracked as CVE-2022-29499, to obtain initial access to the victim's network five months prior to commencing lateral movement, data theft, and system encryption activities.

access backdoor bleepingcomputer critical cve cve-2022-29499 cybercrime data data theft encryption exploited infrastructure initial access lateral movement lorenz lorenz ransomware malware mitel network ransomware reports system telephony theft victim vulnerability

More from www.scmagazine.com / SC Magazine feed for Threats

Updated CISA exploited vulnerabilties catalog includes Windows print spooler bug 1 day, 15 hours ago | www.scmagazine.com

agency apt28 attacks bear +37

Novel Kaolin RAT malware distributed in Lazarus Group attacks 1 day, 16 hours ago | www.scmagazine.com

asia attacks distributed fraudulent +16

Infections with abandoned PlugX USB worm continue to be prevalent 1 day, 16 hours ago | www.scmagazine.com

addresses ars technica compromised continue +14

Threat Modeling and Understanding Inherent Threats - Adam Shostack - ESW #359 2 days, 10 hours ago | www.scmagazine.com

adam adam shostack breach modeling +7

How GenAI Can Improve SecOps - Ely Kahn - ESW #359 2 days, 20 hours ago | www.scmagazine.com

aiml can genai secops +2

Indiana water plant hack admitted by Russian hackers 4 days, 15 hours ago | www.scmagazine.com

cnn critical-infrastructure-security cyberattack electricity +14

New tool used in China-linked attacks against Asia-Pacific 5 days, 16 hours ago | www.scmagazine.com

asia attacks backdoor blacktech +18

Russia’s Sandworm APT linked to attack on Texas water plant 1 week, 2 days ago | www.scmagazine.com

apt attack campaign critical-infrastructure-security +9

Novel Kapeka backdoor leveraged in Sandworm attacks 1 week, 2 days ago | www.scmagazine.com

advanced advanced persistent threat apt44 attacks +20

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Associate Compliance Advisor

@ SAP | Budapest, HU, 1031

View on infosec-jobs.com

DevSecOps Engineer

@ Qube Research & Technologies | London

View on infosec-jobs.com

Software Engineer, Security

@ Render | San Francisco, CA or Remote (USA & Canada)

View on infosec-jobs.com

Associate Consultant

@ Control Risks | Frankfurt, Hessen, Germany

View on infosec-jobs.com

Senior Security Engineer

@ Activision Blizzard | Work from Home - CA

View on infosec-jobs.com