SentinelOne reports a sophisticated supply chain attack by Chinese state-sponsored hackers targeting critical infrastructure and large enterprises worldwide. The campaign involved exploitation of network vulnerabilities and malware such as ShadowPad and GOREshell, highlighting persistent cyber espionage efforts. #APT15 #APT41 #ShadowPad #GOREshell
Keypoints
- SentinelOne disclosed details of ongoing Chinese cyber espionage campaigns targeting multiple industries globally.
- The campaigns, PurpleHaze and ShadowPad, exploited vulnerabilities in network devices like Check Point gateways.
- Attackers used malware such as GOREshell and ShadowPad, deploying zero-day exploits and evasion techniques.
- The targeted attack on SentinelOne involved reconnaissance and supply chain infiltration through third-party services.
- No compromise was detected on SentinelOne’s own systems, but the campaigns demonstrate high-level espionage threats.
Views: 19
简体中文
Nederlands
Français
Bahasa Indonesia
日本語
Português