SolarWinds-linked hacking group SilverFish abuses enterprise victims for sandbox tests


Cyberattackers involved in worldwide hacking campaigns are using the compromised systems of high-profile victims as playgrounds to test out malicious tool detection rates.

On Thursday, Swiss cybersecurity firm Prodaft said that SilverFish (.PDF), an “extremely skilled” threat group, has been responsible for intrusions at over 4,720 private and government organizations including “Fortune 500 companies, ministries, airlines, defense contractors, audit and consultancy companies, and automotive manufacturers.”

Attacks are geared toward US and European entities and there is a specific focus on critical infrastructure and targets with a market value of over $100 million.

Read more…
Source: ZDNet