Red Cross: State hackers breached our network using Zoho bug

The International Committee of the Red Cross (ICRC) said today that the hack disclosed last month against its servers was a targeted attack likely coordinated by a state-backed hacking group.

During the incident, the attackers gained access to the personal information (names, locations, and contact information) of over 515,000 people in the “Restoring Family Links” program that helps reunite families separated by war, disaster, and migration.

To breach the Red Cross servers, the threat actors used tactics and custom hacking tools “designed for offensive security” and obfuscation techniques to evade detection, usually linked to advanced persistent threat (APT) groups.

Read more…
Source: Bleeping Computer