위즈베라 통합 보안 설치 프로그램 베라포트(veraport) 보안 업데이트 권고

2020-11-18 • KRCERT • Wizvera integrated security installation program Veraport security update advisory •

https://www.krcert.or.kr/kr/bbs/view.do?searchCnd=1&bbsId=B0000133&searchWrd=%EC%9C%84%EC%A6%88%EB%B2%A0%EB%9D%BC&menuNo=205020&pageIndex=1&categoryCode=&nttId=35794

#VeraPort

KR-CERT warned that attackers were abusing Wizvera’s Veraport integrated security installer to distribute malware through phishing sites impersonating financial-transaction or corporate services. The advisory says the attack attempted to install malware disguised as security software by using configuration files and unauthorized certificates, affecting Veraport versions 3.8.5.0 and below. Users were advised to remove vulnerable installations and reinstall/update Veraport from legitimate financial or enterprise sites after vendors deployed security patches.

Related Reports

2020-11-16 • 60% Match

Lazarus supply‑chain attack in South Korea

ESET

#BookCodes #SupplyChain #MagicLine4NX #VeraPort #Lazarus #T1584.004 #T1587.001 #T1041 #T1071.001 #T1195.002 #T1036 #T1055 #T1553.002 #T1027.002 #T1573.001 #T1588.003 #T1106 #T1547.005

Shares tag: VeraPort • Published within a week

2021-02-28 • 45% Match

Cyber Threats 2020: A Year in Retrospect

PWC

#AppleSeed #BlackBanshee #BlackArtemis #VeraPort #ShowState #BlackShoggoth #T1082 #T1140 #T1005 #T1070.004 #T1041 #T1083 #T1056.001 #T1036 #T1027 #T1071 #T1204 #T1057 #T1547.001 #T1566 #T1059 #T1195 #T1490 #T1486 #T1489 #T1133 #T1068 #T1221 #T1187

Shares tag: VeraPort

2023-10-04 • 40% Match

LAZARUS CAMPAIGNS AND BACKDOORS IN 2022-23

ESET

#DreamJob #Inception #MagicLine4NX #3CXDesktopApp #CrossWebEX #VeraPort #DangerousPassword

Shares tag: VeraPort

« Back