Vendor claims that the campaign was blocked within 10 minutes.
ESET has said it is “aware of a security incident” which affected an Israeli partner company recently.
ESET said the “limited malicious email campaign” was blocked within ten minutes, and ESET was not compromised and is working closely with its partner to further investigate and we continue to monitor the situation.
Media reports stated that attackers breached ESET's partner to send phishing emails to Israeli businesses, which pushed data wipers disguised as antivirus software for destructive attacks. In a campaign that began on October 8th, the email was sent from a legitimate domain and stated ‘Government-backed attackers may be trying to compromise your device’.
The email itself passed DKIM and SPF checks against ESET's domain.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
