Critical Industry Vulnerability Alert!
Huntress has discovered and subsequently released details on an emerging threat targeting a software utilized heavily in the construction and contracting industries.
The software (brand name Foundation Software) is utilized for accounting and internal job management functions by thousands of companies nationwide. Details of the attacks indicate that the threat actors are utilizing brute force techniques and a built in default login credentials (which presumably have not been changed) to gain access at scale to the software.
This is an active threat, please spread the word and notify industry contacts to review security posture and incident response plans.
Harden the Target, Stay Vigilant!