ESAFENET offers a range of services in the fields of data security, network security, and security business. It specializes in security services, data asset security protection, mobile data security, cloud security hardware and software products, and more. It was founded in 2003 and is based in Beijing. It is a wholly-owned subsidiary of NSFOCUS.
Latest ESAFENET News
Aug 23, 2023
Diving into details According to findings from Symantec, the legitimate software exploited in this supply chain attack is known as Cobra DocGuard. This software is developed by the Chinese company EsafeNet and is commonly utilized in security solutions for tasks such as data encryption and decryption. Cobra DocGuard was present on approximately 2,000 computers. However, out of these, only about 100 exhibited signs of malicious behavior. This discrepancy suggests that the attackers were selectively targeting high-value entities for further compromise. Carderbee leveraged the DocGuard software updater to introduce various strains of malware, among them PlugX. The downloader used for the PlugX malware bore a digital signature from Microsoft Windows Hardware Compatibility Publisher. This specific signature complicates the detection of the malware, adding an additional layer of challenge for identification. Attribution As per an ESET report dated September 2022, an illicit update of the DocGuard software was employed to compromise a Hong Kong-based gambling establishment. Remarkably, this same gambling company had fallen victim to a similar technique in September 2021, executed by the Budworm group, aka LuckyMouse or APT27 . This history led ESET to ascribe the September 2022 assault to Budworm as well. During this incident, a new version of the PlugX malware was also spotted. It featured the distinct header "ESET," hinting at potential alterations aimed at evading ESET's protective products. However, there was insufficient evidence to definitively link this latest supply chain attack to the Budworm group. The bottom line The adversaries evidently possess considerable expertise and patience. Employing a combination of supply chain exploitation and digitally signed malware, they have been evading detection while conducting the campaign. Software supply chain attacks continue to pose a significant challenge for organizations across various industries. Strengthening supply chain security through thorough vendor assessments and continuous monitoring is essential.
ESAFENET Frequently Asked Questions (FAQ)
When was ESAFENET founded?
ESAFENET was founded in 2003.
Where is ESAFENET's headquarters?
ESAFENET's headquarters is located at Xierqi Street, Haidian District, Beijing.
Who are ESAFENET's competitors?
Competitors of ESAFENET include INGEEK and 4 more.
Compare ESAFENET to Competitors
TRUSTMD INFO focuses on private network security product research and development and technological innovation. The company's services served private network units in various industries such as governments, public security, and electric power in various provinces and cities across the country. The company was founded in 2002 and is based in Guangzhou, China.
YiZhiSec is a network security service provider. It creates a network security defense system and provides network security solutions for government and enterprise network security, private cloud infrastructure security, IoT security, end-user behavior analysis, firmware security, and other fields. It was founded in 2018 and is based in Guangzhou, Guangdong.
Tsinghua Unigroup is a tech company that specializes in integrated circuits and provides mobile phone chips. Tsinghua Unigroup is an operating subsidiary of Tsinghua Holdings Co., a solely state-owned limited liability corporation funded by Tsinghua University in China. The company was founded in 1988 and is based in Beijing, Beijing.
AisinoChip is an integrated circuit design service provider that focuses on the development of independent controllable information security. Its products include IoT security chips, large-capacity memory chips, smart card chips, and more. The company was founded in 2008 and is based in Shanghai, China.
China Electronics is a state-owned company that engages in network security, new display, integrated circuits, high-tech electronics, information services, and so on. The company was founded in 1989 and is based in Beijing, China.
BoundaryX provides full-link cloud security protection products and defensive systems for government and enterprise users. The company offers an application security protection system and a container security protection system that helps users build a safer, more flexible, more intelligent, and more valuable defense system. BoundaryX was founded in 2019 and is based in Beijing, China.