loader gif

Single Server Ties Hacked Diplomatic Cables to Chinese Cyberattacks Worldwide

Single Server Ties Hacked Diplomatic Cables to Chinese Cyberattacks Worldwide (Breaches and Incidents)

On Tuesday, cybersecurity professionals from the BlackBerry Cylance Threat Intelligence team published a report on recent Chinese hacking activity based on research made public in December by Area 1 Security. Upon further investigation, it seems this C2 is also connected to a range of other Chinese threat actors -- described as "disparate" groups by BlackBerry Cylance -- which are sharing the same malware and exploit builders. The researchers say they were able to find a connection between the military arm of the Chinese government's hacking teams and hackers tasked with cyberespionage, managed by the National Security Commission, state police, or the Ministry of State Security. "Whether Reaver, and its predecessors, are tools wielded by Chinese groups focused internally on separatist movements, or by a division of the Chinese Army re-tasked to serve the same mission, is unknown," the researchers say.

loader gif