A security research report has shed light on the hacking activity of state-sponsored Chinese threat actors, who were reportedly involved in jeopardizing diplomatic cables of the European Union (EU). According to the report by BlackBerry Cylance Threat Intelligence team, a command-and-control (C2) server used by China’s Strategic Support Force (SSF) was linked to a number of Chinese APT groups.
The associated groups mentioned in the report are Leviathan (Temp.Periscope) and Kryptonite Panda.
Groups target separatists
BlackBerry Cylance team hinted that the threat actor groups were cornering specific groups facing contention with the Chinese government. “We found a connection via the infrastructure included in the Area 1 report to groups associated in other security research with Chinese government efforts to spy on and conduct operations against internal groups perceived as separatist or threatening to the government,” it indicated.