OceanLotus Infused Cobalt Strike to BMW and Hyundai to Control the System

OceanLotus Infused Cobalt Strike to BMW and Hyundai to Control the System

The “OceanLotus” which is an APT hacker group has infused a hacking tool “Cobalt Strike” into the systems of the automobile giant BMW and Hyundai to spy and control the system access. As per the researchers' report from Bayerischer Rundfunk when the attack was traced back the hackers were from Vietnam.

The security analysts from the BMW stated that the attackers were active since March 2019. The compromised computers were taken down by the BMW and also the path is blocked with which the hackers penetrated the network. A fake website was created by hackers to get access to other computers. The fake website was created as if it belongs to the BMW branch in Thailand. With this, the hackers were able to find which folder and file that the users logged in.

Even after the process of hacking was detected the hackers were allowed to stay active with a strong intention to get more details about the hacker and their targets. As per this, they came to know that the hackers did not access any of the sensitive personal information or data and also have not compromised any of the primary computers.