Post by Yuval Malachi, TrapX Security CTO, Vice President and Co-Founder
As CTO of TrapX Security, I’m proud of the work we’ve done both in our TSOC (TrapX Security Operations Center) as well as TrapX Labs and their ATBF (Advanced Test Bed Facility) to completely isolate and identify the Zombie Zero.
Zombie Zero is a suspected nation‐state sponsored Zero Day attack on targeted logistics and shipping industries. Variants of this Advanced Persistent Malware have recently been seen in manufacturing sectors as well. Weaponized malware was delivered into customer environments from the Chinese factory responsible for selling a proprietary hardware/software scanner application used in many shipping and logistic companies around the world. The same hardware product with a variant of this malware was sold and delivered to a manufacturing company as well as to seven other identified customers. The malware was embedded in a version of Windows XP installed on hardware at manufacturer’s location in China. Malware also persisted in the Windows XP embedded version located at the Chinese manufacturer’s support website hosted in China.