home.aspx
 
. https://www.zdnet.com/article/china-hacked-norways-visma-cloud-software-provider/
blog article
CHINA HACKED NORWAY'S VISMA CLOUD SOFTWARE PROVIDER
A Chinese nation-state hacking group known as APT10 has hacked and stolen data from Visma, a Norwegian company that provides cloud-based business software solutions for European companies. The intrusion into Visma's network took place on August 17, 2018, according to a joint report published today by US cyber-security firms Rapid7 and Recorded Future. According to the report, Chinese government-backed hackers breached the company's internal network by using stolen valid user credentials for a Citrix remote-access software client that Visma employees were using to access the company's internal network. Once the hackers were in, they deployed two malware strains --the Trochilus remote access trojan and the Uppercut (Anel) backdoor-- to search, gather, and exfiltrate Visma's data. CATALIN CIMPANU READ MORE