August 10, 2022
1 min read

Chinese hackers target govt agencies globally

The researchers tagged TA428, a Chinese-speaking APT group, behind the series of attacks using six backdoor malware…reports Asian Lite News

China-based hackers attacked military industrial plants, research institutes, government agencies and ministries in several countries and were able to even hijack the IT infrastructure of some, taking control of systems used to manage security solutions, a new report has revealed.

Researchers at cyber-security firm Kaspersky detected a wave of targeted attacks on military industrial complex enterprises and public institutions in several Eastern European countries and Afghanistan.

“In the course of our research, we were able to identify over a dozen of attacked organisations,” the researchers said.

The analysis suggests that “it is highly probable that a Chinese-speaking group is behind the attacks”.

The researchers tagged TA428, a Chinese-speaking APT group, behind the series of attacks using six backdoor malware.

The attackers penetrated the enterprise network using carefully crafted phishing emails.

“In the course of our investigation, we discovered that, in some cases, the attackers create phishing emails using information that is not publicly available, such as the full names of employees responsible for handling sensitive information, as well as internal codenames of projects developed by attacked organisations,” the team noted.

Phishing emails contain Microsoft Word documents with embedded malicious code that exploits the CVE-2017-11882 vulnerability, which enables an attacker to execute arbitrary code without any additional user activity.

In the new series of attacks, the attackers used six different backdoors at the same time — probably to set up redundant communication channels with infected systems in case one of the malicious programmes was detected and removed by a security solution.

“The backdoors used provide extensive functionality for controlling infected systems and collecting confidential data,” said Kaspersky.

The attack targeted industrial plants, design bureaus and research institutes, government agencies, ministries and departments in several East European countries (Belarus, Russia, and Ukraine), as well as Afghanistan, it added.

ALSO READ: China preparing for invasion, says Taiwan

Previous Story

Security beefed up at Kenya ahead of general elections

Next Story

Millions vote for new president in Kenya

Latest from -Top News

Jaishankar Gets Real on India-US Ties

The EAM underlined the structural drivers of the bilateral relationship, saying, “The trend line over the last 25 years has actually been very strong….reports Asian Lite News External Affairs Minister S. Jaishankar

Trump Ends Syria Sanctions

Syria has been designated a State Sponsor of Terrorism by the United States since December 1979…reports Asian Lite News US President Donald Trump signed an executive order terminating Syria sanctions, according to

Polls Early Next Year, Yunus Tells US

The Chief Advisor invited Rubio to visit Bangladesh ahead of the general election to witness the country’s transition to democracy firsthand…reports Asian Lite News Bangladesh’s interim Chief Advisor Muhammad Yunus has urged

Jaishankar Shoots Down Trump’s Ceasefire Claim

External Affairs Minister S. Jaishankar has rejected former US President Donald Trump’s claim of using trade pressure to broker an India-Pakistan ceasefire….reports Asian Lite News External Affairs Minister S. Jaishankar, drawing on

India, Namibia to Boost Ties During Modi Visit

This will be the first visit of Prime Minister Modi to Namibia, and the third-ever Prime Ministerial visit from India to Namibia….reports Asian Lite News Prime Minister Narendra Modi’s forthcoming visit to
Go toTop

Don't Miss

Imran to seek investments during China visit next month

Imran Khan may become one of the first foreign leaders

China accused of violating Japanese airspace

The latest development could fuel tensions between the two countries