APT hacker group “OceanLotus” apparently compromised network systems of automaker BMW and Hyundai by installing some hacking tool which would control and spy their systems. What they did was nothing new but it was sophisticated.
According to the article
“Created Fake Websites
To get access to other computers, the hackers created a fake website that gave the impression of belonging to the BMW branch in Thailand, as they can monitor networks and find out which folders and files that users logged in.
Hackers Observed for Months
The security team at BMW allowed hackers to stay active with an intention to know more details like, who they were, how many systems they managed to compromise, and what kind of data they were after.
Based on sources, no sensitive information was accessed by hackers during the incident and no primary computers were compromised.
BMW declined to provide additional information on the attack.
“We have implemented structures and processes that minimize the risk of unauthorized external access to our systems and allow us to quickly detect, reconstruct, and recover in the event of an incident,” BMW said in a statement.”
Source Article: https://www.cisomag.com/apt-hacker-group-targets-bmw-and-hyundai-networks/