Vendor claims that the campaign was blocked within 10 minutes.
ESET has said it is “aware of a security incident” which affected an Israeli partner company recently.
ESET said the “limited malicious email campaign” was blocked within ten minutes, and ESET was not compromised and is working closely with its partner to further investigate and we continue to monitor the situation.
Media reports stated that attackers breached ESET's partner to send phishing emails to Israeli businesses, which pushed data wipers disguised as antivirus software for destructive attacks. In a campaign that began on October 8th, the email was sent from a legitimate domain and stated ‘Government-backed attackers may be trying to compromise your device’.
The email itself passed DKIM and SPF checks against ESET's domain.
Written by
Dan Raywood
Senior Editor
SC Media UK
Dan Raywood is a B2B journalist with more than 20 years of experience, including covering cybersecurity for the past 16 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Conference, BSides Scotland, Steelcon and ESET Security Days.
Outside work, Dan enjoys supporting Tottenham Hotspur, managing mischievous cats, and sampling craft beers.
