ANSSI, the French cybersecurity agency, warns of an intrusion campaign targeting the monitoring software Centreon distributed by the French company Centreon which resulted in breaches of various French entities. The initial victim appears to have been compromised from late 2017. The campaign continued until 2020.
This campaign mostly influenced information technology providers, particularly web hosting providers.
In a report, ANSSI provides advice, detection methods and technical information detailing this campaign, such as targeted systems, detailed malware code analysis, infrastructure, tactics, methods, procedures, and links with Sandworm’s intrusion set.
To Read More: Security Magazine