Chinese government accused of decade of cyber attacks on Southeast Asia

The security firm discovered the espionage after some of the malware used by the hackers was found to have affected defense-related clients in the U.S.

The security firm discovered the espionage after some of the malware used by the hackers was found to have affected defense-related clients in the U.S.

According to the California-based security software firm FireEye, the Chinese government is behind a newly discovered set of malware attacks against businesses, government agencies and corporate companies across India and Southeast Asia over the past ten years.

FireEye released a 69-page technical report on the group, which it calls APT (Advanced Persistent Threat) 30. The report claimed the cyber spying operations have been ongoing since at least 2005.

The cyber spying and corporate espionage were directed against targets based in India, Nepal, Thailand, Malaysia, Singapore, Vietnam, Indonesia, Philippines and many more. It has targeted organisations via spear phishing, or sending emails that contain harmful links or malicious attachments.

According to Jen Weedon, manager of strategic analysis at FireEye, the security firm discovered the espionage after some of the malware used by the hackers was found to have affected defense-related clients in the U.S.

The group has routinely upgraded its malware, but the tools it uses are usually not that advanced, and it has used some of the same command-and-control infrastructure for years on end.

The organizations targeted by APT 30 would have possibly had slack security postures, which made it easy for them to intrude without needing to use more advanced attack methods, Weedon said.

APT 30 has had special interest in the relationship between China and India, including border issues, FireEye’s report said. The groups focus on those specific subjects make it likely that it is backed by China.

The group has created tools that are particularly designed to move from systems connected to the Internet to those that are not connected. APT 30 developed malware components with worm-like abilities that can attack removable drives such as USB sticks and hard drives. Those devices can transmit the malware if connected to a device on an air-gapped network.

FireEye said it has come across several groups who have developed this capability; however APT 30 seems to have made this deliberation at the beginning of their development efforts in 2005, clearly much earlier than several other advanced groups they have tracked.

Since long, FireEye has done several reports on groups it has linked to China. However, this group does not seem to be linked any of the other ones and operated in relative seclusion. APT 30 has its very own build out resources, and does not share attack infrastructure with other groups, Weedon said.

Christy Gren
Christy Gren is an Industry Specialist Reporter at Industry Leaders Magazine she enjoys writing about Unicorns, Silicon Valley, Startups, Business Leaders and Innovators. Her articles provide an insight about the Power Players in the field of Technology, Auto, Manufacturing, and F&B.

Leave a Reply

Your email address will not be published.

Recent Posts

Best Retirement Plans For Entrepreneurs While Inflation Soars

Best Retirement Plans For Entrepreneurs While Inflation Soars

As of 2021, over 150 million US workers identified themselves as self-employed. This means that they are responsible for their own retirement plans. Employees of big firms tend to
8 hours ago
Fashion Designer Vera Wang – The Fairy Godmother All Brides Want

Fashion Designer Vera Wang – The Fairy Godmother All Brides Want

Just shy of her 40th birthday, Vera Wang struggled to find a bridal gown that suited her taste. Her father pointed out her struggles for what they really were – a remarkable busi
8 hours ago
The Microsoft Employee Salary Hike: Peer Pressure In Tech

The Microsoft Employee Salary Hike: Peer Pressure In Tech

In the memo obtained by Geekwire, Nadella writes that he is aware of how much their talent is in demand. He appreciated their efforts in keeping the company running and thanked hi
14 hours ago
Grubhub Marketing: A Harsh Lesson in Disaster Management

Grubhub Marketing: A Harsh Lesson in Disaster Management

The GrubHub marketing disaster is a lesson in what not to do. Sure, even negative publicity is publicity. But sometimes, it leaves a bad taste in one’s mouth that is difficult to
1 day ago
Walmart Q1 Earnings 2022: Rising Inflation and Robust Sales Down Profits

Walmart Q1 Earnings 2022: Rising Inflation and Robust Sales Down Profits

In the Walmart earnings call 2022, Chief Financial Officer Brett Biggs mentioned that “Q1 profit declined more than expected with operating income down 20% and adjusted EPS down
1 day ago
Shareholders Reject Intel’s Executive Pay Package

Shareholders Reject Intel’s Executive Pay Package

The filing shows that “stockholders did not approve, on an advisory basis, Intel’s executive compensation of its listed officers.” The California-based tech company’s packa
2 days ago