Chinese government accused of decade of cyber attacks on Southeast Asia

The security firm discovered the espionage after some of the malware used by the hackers was found to have affected defense-related clients in the U.S.

The security firm discovered the espionage after some of the malware used by the hackers was found to have affected defense-related clients in the U.S.

According to the California-based security software firm FireEye, the Chinese government is behind a newly discovered set of malware attacks against businesses, government agencies and corporate companies across India and Southeast Asia over the past ten years.

FireEye released a 69-page technical report on the group, which it calls APT (Advanced Persistent Threat) 30. The report claimed the cyber spying operations have been ongoing since at least 2005.

The cyber spying and corporate espionage were directed against targets based in India, Nepal, Thailand, Malaysia, Singapore, Vietnam, Indonesia, Philippines and many more. It has targeted organisations via spear phishing, or sending emails that contain harmful links or malicious attachments.

According to Jen Weedon, manager of strategic analysis at FireEye, the security firm discovered the espionage after some of the malware used by the hackers was found to have affected defense-related clients in the U.S.

The group has routinely upgraded its malware, but the tools it uses are usually not that advanced, and it has used some of the same command-and-control infrastructure for years on end.

The organizations targeted by APT 30 would have possibly had slack security postures, which made it easy for them to intrude without needing to use more advanced attack methods, Weedon said.

APT 30 has had special interest in the relationship between China and India, including border issues, FireEye’s report said. The groups focus on those specific subjects make it likely that it is backed by China.

The group has created tools that are particularly designed to move from systems connected to the Internet to those that are not connected. APT 30 developed malware components with worm-like abilities that can attack removable drives such as USB sticks and hard drives. Those devices can transmit the malware if connected to a device on an air-gapped network.

FireEye said it has come across several groups who have developed this capability; however APT 30 seems to have made this deliberation at the beginning of their development efforts in 2005, clearly much earlier than several other advanced groups they have tracked.

Since long, FireEye has done several reports on groups it has linked to China. However, this group does not seem to be linked any of the other ones and operated in relative seclusion. APT 30 has its very own build out resources, and does not share attack infrastructure with other groups, Weedon said.

Christy Gren
Christy Gren is an Industry Specialist Reporter at Industry Leaders Magazine she enjoys writing about Unicorns, Silicon Valley, Startups, Business Leaders and Innovators. Her articles provide an insight about the Power Players in the field of Technology, Auto, Manufacturing, and F&B.

Recent Posts

Elon Musk’s Starlink satellite internet set to cover the globe soon

Elon Musk’s Starlink satellite internet set to cover the globe soon

Starlink, the satellite internet unit of Elon Musk’s SpaceX, will most likely be able to provide global coverage by September, according to the company’s president Gwynne S
12 hours ago
At the next Krispy Kreme IPO, the donut maker aims to raise nearly $4 billion

At the next Krispy Kreme IPO, the donut maker aims to raise nearly $4 billion

Krispy Kreme, the popular donut chain, aims raise roughly $4 billion as it makes one of the biggest IPO debuts at the NYSE.
13 hours ago
Panasonic hopes Blue Yonder acquisition will improve its software woes

Panasonic hopes Blue Yonder acquisition will improve its software woes

Most Japanese major companies, which at one time were leaders in consumer electronics, are struggling to find their feet in a world that has moved to digital software. Electronics
1 day ago
Ikea and Rockefeller Foundations to raise $10 billion for renewable energy projects in poor countries

Ikea and Rockefeller Foundations to raise $10 billion for renewable energy projects in poor countries

The Ikea and Rockefeller foundations are jointly launching a $10 billion fund to promote small-scale renewable power projects in developing nations. Both
2 days ago
EC initiates another probe into Google’s adtech practices

EC initiates another probe into Google’s adtech practices

EU antitrust regulators are planning a formal investigation into Google’s digital advertising practices by the end of this year. Google is already facing unprecedented regulatory
3 days ago
Some Microsoft employees stayed at data centers during Pandemic to keep all systems going

Some Microsoft employees stayed at data centers during Pandemic to keep all systems going

The Covid-19 pandemic ravaging the world for more than a year has forced companies and organizations to find viable solutions to keep the business going. Most found a solution in w
3 days ago