Sandworm-Linked Hackers Have Targeted French Firms via Centreon IT Monitoring Tool

North Korea has hacked Pfizer, Massively adopted Android application SHAREit has three unpatched serious flaws, Dutch research council suspends subsidy allocations due to hack, much more

Want to gain access to Metacurity’s archives and special content (plus a few surprising premium benefits in a month or so)? Sign up to become a subscriber today.

French information security agency ANSSI published an advisory warning that hackers with links to Sandworm, a Russian hacking group run out of the country’s GRU military agency, have stealthily targeted French firms by exploiting an IT monitoring tool called Centreon, made by a firm of the same name, attacks that go back to 2017.

The victims were"mostly" IT firms and particularly web hosting companies. Although not named as victims by ANSSI, among Centreon’s customers are telecom providers Orange and OptiComm, IT consulting firm CGI, defense and aerospace firm Thales, steel and mining firm ArcelorMittal, Airbus, Air France KLM, logistics firm Kuehne + Nagel, nuclear power firm EDF, and the French Department of Justice. (Andy Greenberg / Wired)

Related: Tech Xplore, Bleeping Computer, ZDNet, iTnews - Security, Reuters, Silicon…