In May 2024, ESET’s antivirus software flagged malware infections on Windows computers that were traced to the website of South Korean VPN company IPany. "Upon further analysis, we discovered ...

South Korean VPN provider IPany was breached in a supply chain attack by the "PlushDaemon" China-aligned hacking group, who compromised the company's VPN installer to deploy the custom ...

In May 2024, we noticed detections of malicious code in an NSIS installer for Windows that users from South Korea had downloaded from the website of the legitimate VPN software IPany (https ...

ESET reported that the malware-infected installer for IPany, a VPN developed in South Korea, was available for download on the developer's website. SlowStepper is a feature-rich backdoor with over 30 ...

The ESET security research team found the malicious code – alongside the legitimate software – in the Windows installer of IPany, a South Korean VPN provider. The so-called PlushDaemon APT ...

Chinese hackers hijacked a VPN provider's website to spread malware to users in Asia, according to antivirus company ESET. In May 2024, ESET’s antivirus software flagged malware infections on ...

The threat actor, tracked as PlushDaemon, compromised a virtual private network (VPN) installer developed by the South Korean firm IPany to deploy custom malware on the victims' devices. According to ...

A previously undocumented China-aligned advanced persistent threat (APT) group named PlushDaemon has been linked to a supply chain attack targeting a South Korean virtual private network (VPN) ...