(Reuters)-The French cybersecurity watchdog said on Monday that hackers have targeted surveillance software produced by the French company Centreon and have been in the organization for three years.
The surveillance program is known by its French acronym ANSSI. It did not find hackers, but said they had similar modus operandi, just like the Russian cyber espionage organization often nicknamed “Sandworm”.
ANSSI, Centreon and the Russian Embassy in Paris did not immediately respond to requests for comment.
The positioning of Centreon, a Paris-based company specializing in information technology surveillance, further highlights the appeal of such companies to digital spies.
US cybersecurity officials are still working on an ambitious espionage campaign that hijacked IT surveillance software produced by SolarWinds in Austin, Texas. US officials condemning the Moscow hacking hinted that other companies have been hit similarly.
Earlier this month, Reuters reported that suspicious Chinese hackers were also targeting SolarWinds customers, who used a less serious vulnerability to help spread it to the victim’s network.
ANSSI said in a 40-page report published on its website that the original medium for the intrusion targeting the Centreon software is still unclear. It said it found an invasion that dates back to the end of 2017 and lasted until 2020.
The regulator did not disclose the name or name of the victim, but said it was mainly an IT service company, such as an Internet hosting service provider.
Centreon’s website states that it is in more than 600 corporate clients worldwide, including the French Ministry of Justice.
Reporting by Raphael Satter; Editing by Grant McCool and Richard Chang