Supernova malware clues link Chinese threat group Spiral to SolarWinds server hacks

March 9, 2021

On Monday, Secureworks’ counter threat unit (CTU) said that during late 2020, a compromised Internet-facing SolarWinds server was used as a springboard to deploy Supernova, a .NET web shell. Similar intrusions on the same network suggest that the Spiral threat group, suspected of a Chinese origin, is to blame for both cases.Latest news clusters for enRead More

Serious Security: Webshells explained in the aftermath of HAFNIUM attacks
Microsoft Exchange attacks: Now Microsoft rushes out a patch for these unsupported Exchange servers, (ZDNet Latest News)