Cybersecurity firm CrowdStrike has discovered an attempt by a China-based group to infiltrate an academic facility via the Log4j vulnerability.

CrowdStrike called the group “Aquatic Panda” and said it was “an anti-intruder with a dual mission of information gathering and industrial espionage” that has been in operation since at least May 2020.

The exact intent of the group is unknown as the attack was interrupted. However, CrowdStrike told ZDNet that Aquatic Panda is known to be persistent in environments to gain access to intellectual property and other industrial trade secrets.

“Aquatic Panda’s activities have mainly focused on companies in the telecommunications, technology and government sectors,” said CrowdStrike in a report.

According to CrowdStrike, their system “detected suspicious activity resulting from a Tomcat process running under a vulnerable …



Source link

Leave a Reply