The latest string of attacks targeting SolarWinds Serv-U managed file transfer service with a now-patched remote code execution (RCE) exploit is the handiwork of a Chinese threat actor dubbed “DEV-0322” Microsoft said the adversary is known for targeting entities in the U.S. Defense Industrial Base Sector and software companies. The revelation comes days after the Texas-based IT monitoring software maker issued fixes for the flaw that could enable adversaries to remotely run arbitrary code with privileges.
Source: https://thehackernews.com/2021/07/chinese-hackers-exploit-latest.html