Hacking group abuses antivirus software to launch LODEINFO malware


Security software was seen being abused by the Chinese Cicada hacker gang, known as APT10, to install a new version of the LODEINFO virus on Japanese firms. These high-interest targets for cyberespionage include media organisations, diplomatic missions, governmental and non-profit institutions, and think tanks in Japan.

The threat actors are continually changing their infection tactics and their bespoke backdoor, ‘LODEINFO,’ according to Kaspersky, whose analysts have been following APT10’s activity in Japan since 2019. Read More…