US-linked Cyber Espionage Targets Chinese Tech and Research

Posted on December 23, 2024
Chinese authorities have reported two significant cyber espionage incidents targeting technology companies and research institutions in the country. The attacks, believed to be orchestrated by U.S. intelligence agencies, aimed to steal crucial commercial secrets and intellectual property, highlighting rising concerns about national cybersecurity.

One of the incidents, lasting from April to August 2024, involved a sophisticated intrusion into a large U.S. organization operating in China. The attackers maintained a persistent presence on the organization’s network, gathering intelligence throughout the four-month period.

A second attack, reported in August 2024, targeted a prominent advanced materials research organization in China. Hackers exploited vulnerabilities in an electronic document security system commonly used in the country to compromise the company’s software upgrade management server. This breach allowed the attackers to deploy control Trojans to over 270 hosts, stealing significant amounts of sensitive commercial data.

Additionally, a cyberattack on a leading smart energy and digital information company in May 2023 involved exploiting vulnerabilities in Microsoft Exchange servers. The attackers used overseas springboards to take control of the company’s mail server, implant backdoor programs, and steal email data. The breach also led to the infiltration of over 30 devices and the extraction of valuable commercial data.

These incidents underscore the growing threat of cyber espionage, particularly targeting Chinese technology companies and research institutions. The Chinese National Internet Emergency Center (CNIE) has called for stronger cybersecurity measures across the country, urging organizations to implement timely software patches and robust monitoring systems to defend against such sophisticated cyber threats.

The attacks further emphasize the importance of international cooperation to address cybersecurity risks and hold perpetrators accountable for these malicious activities.

Source: Cyber Security News

The European Cyber Intelligence Foundation is a nonprofit think tank specializing in intelligence and cybersecurity, offering consultancy services to government entities. To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net, or you can try yourself using check.website.