Hundreds of regional and national news websites in the United States are delivering malware as a result of a supply chain attack involving one of their service providers.
The attack appears to have been carried out by TA569, a threat actor that the cybersecurity firm Proofpoint tracks. An unnamed media company that provides services to numerous US news outlets has been targeted by the hackers. A JavaScript file is used by the service provider to deliver content to its partners.
Also Read: Effective Collaboration Between IT and HR is Critical to Better Cybersecurity
To spread SocGholish malware to users of the affected news websites, the attacker altered the script’s codebase. Affected news sites include those in Boston, New York, Chicago, Washington, DC, Miami, Palm Beach, and Cincinnati, among more than 250 others.
Read More: Over 250 US News Websites Deliver Malware via Supply Chain Attack
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
