Summary: A supply chain attack compromised LES Automotive, a service used by car dealerships, enabling over 100 dealership websites to distribute malicious ClickFix code. This attack employs social engineering tactics to prompt users into executing harmful commands. The ClickFix malware campaign has increasingly targeted various sectors, including the auto and hospitality industries.
Affected: Car dealerships using LES Automotive
Keypoints :
- Compromise of LES Automotive allowed malicious code to infect dealership websites.
- ClickFix prompts users to execute dangerous commands under the guise of fixing errors.
- The campaign also spreads malware, specifically SectopRAT, to visitors of infected sites.
- Indicators suggest the attack may involve Russian-speaking cybercriminals and dynamically injected scripts.
Source: https://www.securityweek.com/100-car-dealerships-hit-by-supply-chain-attack/