Hackers breaching construction firms via specialized accounting software

Hackers are targeting construction firms through internet-exposed servers running Foundation accounting software, according to Huntress researchers. Weaknesses in the software’s Microsoft SQL Server, in combination with users failing to change default system administrator account credentials, can enable attackers to gain high-privilege access. Once breached, the attacker can enable a feature allowing the execution of operating system commands directly. The researchers suggest changing passwords and making them robust.