Click Studios confirmed a supply chain attack affecting its Passwordstate password management application last week. The Australian software firm has warned customers of an ongoing phishing attack by an unknown threat actor. Only customers who performed In-Place Upgrades between April 20, 8:33 PM UTC, and April 22, 0:30 AM UTC are said to be affected. The attack involves crafting seemingly legitimate email messages that “replicate Click Studios email content” to push a new variant of the malware. Click Studios released a hotfix package named “Moserware.zip” to help customers remove the tampered DLL.
Source: https://thehackernews.com/2021/04/passwordstate-warns-of-ongoing-phishing.html