In a groundbreaking revelation, cybersecurity firm Mandiant, a subsidiary of Google, has identified online attackers with strong ties to China as the primary culprits behind an extensive cyber espionage campaign targeting government agencies. According to Mandiant Chief Technology Officer Charles Carmakal, this campaign is the most comprehensive cyber espionage effort ever carried out by a China-associated threat actor since the mass exploitation of Microsoft Exchange earlier this year. The attackers compromised the computer defenses of numerous organizations, gaining access to sensitive information, including emails of high-profile individuals involved in matters of interest to the Chinese government. Mandiant has attributed this wide-ranging espionage campaign to a group known as UNC4841, which has been conducting cyber activities in support of the People’s Republic of China. The targets of these attacks spanned across at least 16 countries and included public and private sector organizations, particularly those dealing with policy issues in the Asia-Pacific region and Taiwan. The software vulnerability exploited by the cyber attackers was found in Barracuda, a tool used to screen and secure email messages.
The cyber espionage campaign was first detected in May, but Mandiant suspects it may have started as early as October of the previous year. Despite efforts to mitigate the attacks, evidence of ongoing malware activity has been found on some compromised systems. It is notable that this revelation comes after a major hacking incident earlier this year that affected thousands of organizations in the US and was also linked to a Beijing-backed hacker group. In a separate incident, several US federal agencies were recently targeted by a seemingly unrelated cyber attack.
This revelation highlights the growing threat of cyber espionage and the need for robust cybersecurity measures to protect sensitive information. Governments and organizations must remain vigilant and invest in advanced security solutions to defend against these sophisticated attacks.
RELATED STORIES
4 common cybersecurity threats to watch out for
At least 10 hacking groups using Microsoft software flaw — researchers
Denial of responsibility! VigourTimes is an automatic aggregator of Global media. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, and all materials to their authors. For any complaint, please reach us at – [email protected]. We will take necessary action within 24 hours.
