What is JumpCloud?
JumpCloud is a U.S. based IT service provider that offers central access control and device management centralized user, device and application management for enterprises.
What is the Attack?
According to the advisory published by JumpCloud, an unnamed nation-state threat actor compromised the company’s systems through a spear-phishing attack in late June 2023. While the details of the attack were not released, the attack was allegedly intended to steal cryptocurrency and affected JumpCloud customers.
Why is this Significant?
This is significant because it is a new supply chain attack, following another notable supply-chain attack that hit 3CX in March of this year. While this attack is believed to be financially motivated, the perpetrators may have deployed destructive malware (ransomware, wipers, etc.) or engaged in other malicious activities.
What FortiGuard Coverage is available?
All network IOCs on the JumpCloud advisory are blocked by Webfiltering.
More Stories
CyberDanube Security Research 20240919-0 | Multiple Vulnerabilities in Netman204
Posted by Thomas Weber via Fulldisclosure on Sep 23 CyberDanube Security Research 20240919-0 ------------------------------------------------------------------------------- title| Multiple Vulnerabilities product| Netman 204...
Submit Exploit CVE-2024-42831
Posted by arfaoui haythem on Sep 23 # Exploit Title: Reflected XSS in Elaine's Realtime CRM Automation v6.18.17 # Date:...
USN-7021-2: Linux kernel vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This...
USN-7029-1: Linux kernel vulnerabilities
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could...
USN-7007-3: Linux kernel vulnerabilities
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could...
USN-6999-2: Linux kernel vulnerabilities
Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could...