Saturday, October 16, 2021

U.S DOJ charges 4 Chinese nationals for the global hacking campaign

Must Read

Why Cybercrime shift from attacks targeting individual systems to attacks targeting entire organizations

The change from attacks targeting human systems to strikes targeting whole associations is pushing up the price of cyberattacks...

Bug in a shared SDK may allow attackers to join calls undetected across multiple apps

A small library that provides audio and video call capabilities contain a bug that allows attackers to join audio...

Canada Names China, Russia as Chief cyber-crime Risks; sees Danger to Electricity supply

Canada on Wednesday identified state-sponsored applications in China, Russia, Iran, and North Korea as important cybercrime threats for the...

The Justice Department announced charges against four Chinese nationals on Monday, accusing the men of being part of a hacking group that attacked “companies, universities and government entities in the United States and abroad between 2011 and 2018.”

The charges were announced as the United States and a coalition of allies on Monday accused China’s Ministry of State Security of a global cyber hacking campaign, specifically attributing a large Microsoft attack disclosed earlier this year to hackers working on Beijing’s behalf.

According to a release from the DOJ, a San Diego federal grand jury returned the indictment of all four in May and it was unsealed on Friday.

The hacking was sponsored by the Ministry of State Security and focused on information that would significantly benefit Chinese companies and businesses, including research and development processes.

The indictment says Ding Xiaoyang, Cheng Qingmin, and Zhu Yunmin were members of the Hainan State Security Department working covertly within a front company called Hainan Xiandun Technology Development Co., Ltd.

The defendants and officials in the Hainan State Security Department (HSSS) tried to hide the Chinese government’s role in the information theft by using a front company.

The DOJ noted that the group attacked companies across the US, Indonesia, Malaysia, Norway, Saudi Arabia, South Africa, Switzerland, UK, Austria, Cambodia, Canada, and Germany. Most of the attacks targeted companies working in the defense, education, healthcare, biopharmaceutical, and aviation sectors. 

“These criminal charges once again highlight that China continues to use cyber-enabled attacks to steal what other countries make, in flagrant disregard of its bilateral and multilateral commitments,” Deputy U.S. Attorney General Lisa Monaco said in the statement.

At research institutes and universities, the conspiracy targeted infectious-disease research related to Ebola, MERS, HIV/AIDS, Marburg, and tularemia.” 

The FBI and CISA have issued advisories designed to help organizations defend themselves against some of the tactics deployed by the four hackers that were charged. The Joint Cyber Security Advisory has “technical details, compromise indicators, and mitigation measures”.

a2434345d63481a40f0d145881b41013?s=96&d=mm&r=g
Priyanshu Vijayvargiya
Founder and Editor-in-Chief of 'Virtualattacks Inc' Priyanshu Vijayvargiya is a cybersecurity analyst, Information Security professional, developer, and a white hat hacker.

Leave a reply

Please enter your comment!
Please enter your name here

Latest News

Unified endpoint management automation software to boost endpoint security

Endpoints are constantly connected to the internet, so they offer a gateway for cyberattacks. Endpoint security is simply the process...

Attackers Using Morse Code in phishing campaign to Evade Detection

Microsoft on Thursday revealed the techniques used by attackers to avoid detection using morse code in the phishing campaign.Microsoft also revealed the workings of...

Murata Manufacturing suffers data breach of employees and customer

Japanese electronic components manufacturer Murata has released an apology Notice for the data breach of thousands of files in June that contained bank account...

Everything about Signalling System 7(SS7)

Signaling System 7 (SS7) is an international telecommunication protocol standard that controls and regulates the network elements in a public switched telephone network (PSTN)....

Zimbra flaw lets attackers access the mail servers

Researchers discovered a flaw in the open-source Zimbra code. As a result, an attacker would gain unrestricted access to all sent and received emails...

More Articles Like This