[ad_1]
The Australian Transport Safety Bureau said the group was targeting outdated networks and equipment that were no longer maintained.
“APT40 has been successfully exploiting vulnerabilities since 2017.”
The infected software includes versions of Log4, Atlassian Confluence and Microsoft Exchange, according to the advisory.
Between July and September 2022, an Australian organization was compromised, and APT40 was able to map the network and exercise control.
“The investigation uncovered evidence that a significant amount of sensitive data was accessed,” the advisory said.
The ASD has published advice on how to detect hacks on its websites.
This is the first time Australia has taken the lead in cyber warning, and the first time Japan and South Korea have issued a cybersecurity warning together with Australia.
Defence Secretary Richard Marrs said attribution analysis was an increasingly important tool in stopping malicious cyber activity.
Home Secretary Claire O’Neill said cyber intrusions from foreign governments were “one of the most significant threats we face”.
-Dominic Giannini wrote in Canberra
[ad_2]
Source link
