Cybercrime Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw Google says it is still catching government-backed groups linked to China and Russia launching WinRAR exploits in targeted attacks. Ryan NaraineOctober 18, 2023
Supply Chain Security Taiwan Probes Firms Suspected of Selling Chip Equipment to China’s Huawei Despite US Sanctions Taiwan authorities are investigating four Taiwan-based companies suspected of helping China’s Huawei Technologies to build semiconductor facilities. Associated PressOctober 7, 2023
Nation-State US State Department Says 60,000 Emails Taken in Alleged Chinese Hack The US State Department said that hackers took around 60,000 emails in an attack which Microsoft has blamed on China. AFPSeptember 28, 2023
Cyberwarfare China’s Offensive Cyber Operations in Africa Support Soft Power Efforts Chinese state-sponsored threat groups have targeted telecoms, financial and government organizations in Africa as part of soft power efforts. Eduard KovacsSeptember 22, 2023
Mobile & Wireless China Says No Law Banning iPhone Use in Govt Agencies China said it was following media reports about suspected security issues with iPhones but insisted there was no ban on its officials using the devices AFPSeptember 13, 2023
Cyberwarfare China-Linked ‘Redfly’ Group Targeted Power Grid Symantec warns that the Redfly APT appears to be focusing exclusively on targeting critical national infrastructure organizations. Ionut ArghireSeptember 12, 2023
Cloud Security Crash Dump Error: How a Chinese Espionage Group Exploited Microsoft’s Mistakes Microsoft reveals how a crash dump from 2021 inadvertently exposed a key that Chinese cyberspies later leveraged to hack US government emails. Ryan NaraineSeptember 6, 2023
Cyberwarfare ‘Earth Estries’ Cyberespionage Group Targets Government, Tech Sectors Earth Estries, a cyberspy group possibly linked to China, has targeted governments and tech firms in the US, Germany, South Africa and Asia. Eduard KovacsAugust 30, 2023
Cyberwarfare Chinese APT Was Prepared for Remediation Efforts in Barracuda ESG Zero-Day Attack Chinese threat actor exploiting Barracuda ESG appliances deployed persistence mechanisms in preparation for remediation efforts. Ionut ArghireAugust 29, 2023
Malware & Threats Chinese-Backed APT ‘Flax Typhoon’ Hacks Taiwan With Minimal Malware Footprint Microsoft warns that Chinese spies are hacking into Taiwanese organizations with minimal use of malware and by abusing legitimate software. Ryan NaraineAugust 24, 2023
Malware & Threats New ‘Carderbee’ APT Targeted Chinese Security Software in Supply Chain Attack A new APT group called Carderbee has been observed deploying the PlugX backdoor via a supply chain attack targeting organizations in Hong Kong. Ionut ArghireAugust 22, 2023
Cyberwarfare Possible Chinese Malware in US Systems a ‘Ticking Time Bomb’: Report China has implanted malware in key US power and communications networks in a "ticking time bomb" that could disrupt the military in event of... AFPAugust 1, 2023