Avast says hackers breached internal network through compromised VPN profile>
ZD Net – Catalin Cimpanu
Czech cyber-security software maker Avast disclosed today a security breach that impacted its internal network. In a statement published today, the company said it believed the attack’s purpose was to insert malware into the CCleaner software, similar to the infamous CCleaner 2017 incident. Avast said the breach occurred because the attacker compromised an employee’s VPN credentials, gaining access to an account that was not protected using a multi-factor authentication solution. Baloo said Avast intentionally left the compromised VPN profile active, with the purpose of tracking the attacker and observing their actions. This lasted until October 15, when the company finished auditing previous CCleaner releases, and pushed out a new clean update.
Link: https://www.zdnet.com/article/avast-says-hackers-breached-internal-network-through-compromised-vpn-profile/