Event description
The cybersecurity department at STFware detected an unauthorized access to the Security Scanner application code. This new application runs on all internal network hosts, scans the installed programs, and reports vulnerabilities to the security department. The perpetrators inserted their own code into the application, which enabled them to execute commands on any computer in the company's network and read any files. Moreover, the hackers altered vulnerability reports delivered to the security department so that staff members were unaware of the threat. STFware will now have to inspect all of its infrastructure as no one knows how much of it has been compromised.