eScan Antivirus Update Mechanism Exploited to Spread Backdoors and Miners

A new malware campaign has been exploiting the updating mechanism of the eScan antivirus software to distribute backdoors and cryptocurrency miners like XMRig through a long-standing threat codenamed GuptiMiner targeting large corporate networks.
Cybersecurity firm Avast said the activity is the work of a threat actor with possible connections to a North Korean hacking group dubbed 

actor antivirus antivirus software avast backdoors campaign connections corporate cryptocurrency cybersecurity exploited exploiting guptiminer large malware malware campaign mechanism miners networks software targeting threat threat actor update work xmrig