Multiple Chinese state-sponsored threat groups are believed to have targeted Belgium’s ministries. The claim regarding these attacks has been made by the Minister for Foreign Affairs of Belgium.

The attacks on Belgium

Belgium's foreign minister has exposed malicious cyber activities that targeted the ministries of defense and interior.
  • The malicious cyber activities that were aimed at the Belgian Ministry of Defence have been associated with the threat actor Gallium. 
  • The cyber activities targeting FPS Interior have been linked with multiple APT groups - APT27, APT30, and APT31.
  • Although the ministry did not provide any further details about the attacks, it mentioned that the attacks had impacted the key characteristics of Belgium, including sovereignty, democracy, security, and society.

However, the spokesperson of the Chinese Embassy in Belgium denied the accusations.

Other allegations against China-based attacks 

In June, multiple agencies in a joint cybersecurity advisory claimed that Chinese hackers attacked telecommunications companies and network service providers for stealing credentials and data.
  • In the same month, researchers identified a new hard-to-detect RAT named PingPull. The RAT was associated with the Gallium threat group.
  • Additionally, the U.S and its allies, including the EU and the U.K, had officially blamed China for targeting over a quarter of a million Microsoft Exchange servers.

Conclusion

The Belgian government's claims could be incorrect yet the attacks did happen and affected the nation. Thus, private sector firms suggested to follow the federal government’s lead and apply adequate measures. Further, the firms can limit future cyber incidents with investments in cybersecurity and planning a wholistic approach toward cyber threats.
Cyware Publisher

Publisher

Cyware