Chinese Hackers Exploit Zero-Day Flaw in Popular Japanese Security Software

Bronze Butler exploited a critical Lanscope flaw, affecting key Japanese sectors. Discover the impact and response.

By Content Team

Nov 6, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

The Chinese APT group Bronze Butler exploited a critical zero-day vulnerability in Lanscope, an endpoint management platform used by 25% of listed Japanese companies and 33% of the country's financial institutions. The flaw (CVE-2025-61932) scored 9.8/10 severity and allowed hackers complete system access through missing security checks.

Sophos researchers discovered Bronze Butler had been exploiting this vulnerability since mid-2025, months before its October disclosure. The attackers deployed their Gokcpdoor backdoor and stole sensitive data from multiple organizations.

Motex has released a patch, and only 50-160 on-premises servers were exposed online. CISA added the vulnerability to its Known Exploited list, while Japanese authorities confirmed domestic victims since April 2025.

Source: Dark Reading

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Pro-Russia Hackers Target US Critical Infrastructure in New Wave

Dec 28, 2025

Microsoft Rushes Emergency Patch for Office Zero-Day Under Active Attack

Jan 28, 2026

Hackers Target Zero-Day Flaw in Old D-Link Routers No Longer Getting Updates

Jan 8, 2026

Freedom Mobile Hit by Data Breach Affecting Customer Personal Information

Dec 27, 2025