New Milestones for Deep Panda: Log4Shell and Digitally Signed Fire Chili Rootkits
released on 2022-03-31 @ 08:24:57 AM
During the past month, FortiEDR detected a campaign by Deep Panda, a Chinese APT group. The group exploited the infamous Log4Shell vulnerability in VMware Horizon servers. The nature of targeting was opportunistic insofar that multiple infections in several countries and various sectors occurred on the same dates. The victims belong to the financial, academic, cosmetics, and travel industries.