Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Sponsored By
Password Manager Suffers 'Supply Chain' AttackPassword Manager Suffers 'Supply Chain' Attack
A software update to Click Studios' Passwordstate password manager contained malware.
Dark Reading Staff
April 24, 2021
1 Min Read
In an attack reminiscent of that of IT management and remote monitoring software firm SolarWinds, a malicious update to the Click Studios password-manager platform Passwordstate dropped malware onto its software systems this month.
Click Studios is warning customers to change all stored passwords for their accounts, including VPNs, firewalls, switches, local accounts, and servers.
The attack was revealed today by researchers at the CSIS Security Group, which also published indicators of compromise for the attack — which they have dubbed Moserpass. According to CSIS, the breach occurred between April 20 and April 22, using a malicious update via a zip file named Passwordstate_upgrade.zip that included a malicious DLL, moserware.secretsplitter.dll. Click Studios said the command-and-control for the attack was shut down on April 22.
Click Studios has some 29,000 enterprise and government customers worldwide, across aerospace, banking, defense, healthcare, utilities, and other industry sectors.
Read the CSIS findings here.
About the Author(s)
You May Also Like
More Insights
Webinars
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication Methods
Oct 26, 2023Modern Supply Chain Security: Integrated, Interconnected, and Context-Driven
Nov 06, 2023How to Combat the Latest Cloud Security Threats
Nov 06, 2023Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and Phishing
Nov 01, 2023SecOps & DevSecOps in the Cloud
Nov 06, 2023
Events
