•   
  •   
  •   

World Chinese hackers targeted Southeast Asian nations, researchers say

11:21  09 december  2021
11:21  09 december  2021 Source:   marketwatch.com

Senators introduce bipartisan bill to secure critical groups against hackers

  Senators introduce bipartisan bill to secure critical groups against hackers The bipartisan leaders of two Senate committees on Thursday introduced legislation to shore up the cybersecurity of critical infrastructure in the wake of months of crippling cyberattacks. © The Hill Senators introduce bipartisan bill to secure critical groups against hackers The Department of Homeland Security (DHS) Industrial Control Systems Capabilities Enhancement Act would direct the Cybersecurity and Infrastructure Security Agency (CISA) to lead efforts to understand threats against industrial control systems.

State-sponsored Chinese hackers have been broadly targeting government and private sector organizations across Southeast Asia , including the Armed Forces of the Philippines and the Department of Foreign Affairs, according to a report released Wednesday by a U.S.-based private Insikt said it determined that the high-profile military and government organizations in Southeast Asia had been compromised over the last nine months by hackers using custom malware families such as FunnyDream and Chinoxy. Those custom tools are not publicly available and are used by multiple

(Reuters) - Hackers , most likely from China , have been spying on governments and businesses in Southeast Asia and India uninterrupted for a decade, researchers at internet security company FireEye Inc said . In a report released on Monday, FireEye said the cyber espionage operations dated back to at least 2005 and "focused on targets - government and commercial - who hold key political, economic and military information about the region." "Such a sustained, planned development effort coupled with the ( hacking ) group's regional targets and mission, lead us to believe that this activity is

  Chinese hackers targeted Southeast Asian nations, researchers say © AP
ASSOCIATED PRESS

BANGKOK — Chinese hackers, likely state-sponsored, have been broadly targeting government and private-sector organizations across Southeast Asia, including those closely involved with Beijing on infrastructure development projects, according to a report released Wednesday by a U.S.-based private cybersecurity company.


Video: China's Policy Makers Shift Toward Easing Mode (Bloomberg)

Specific targets included the Thai prime minister’s office and the Thai army, the Indonesian and Philippine navies, Vietnam’s national assembly and the central office of its Communist Party, and Malaysia’s Ministry of Defense, according to the Insikt Group, the threat research division of Massachusetts-based Recorded Future.

China's new software policy weaponizes cybersecurity research

  China's new software policy weaponizes cybersecurity research China’s new policies would allow its hacking teams to free ride on cybersecurity research conducted outside its borders, turning defensive research into offensive capabilities. Article 2 and Article 7(2) of China's new regulations require companies operating within China to report known software vulnerabilities to the Ministry of Industry and Information Technology (MIIT) within two days of becoming aware of the issue. In effect, the new regulations would transfer software vulnerabilities found in the United States and other countries to China's MIIT before the company could patch the vulnerability.

A U.S.-based private cybersecurity company says it has uncovered evidence Chinese hackers , likely state-sponsored, have been broadly targeting government and private-sector organizations across Southeast Asia , including those closely involved with

State-sponsored Chinese hackers have been broadly targeting government and private sector organizations across Southeast Asia , including the Armed Forces of the Philippines and the Department of Foreign Affairs, according to a report released Wednesday by a U.S.-based private Insikt said it determined that the high-profile military and government organizations in Southeast Asia had been compromised over the last nine months by hackers using custom malware families such as FunnyDream and Chinoxy. Those custom tools are not publicly available and are used by multiple

Insikt said it determined that the high-profile military and government organizations in Southeast Asia had been compromised over the last nine months by hackers using custom malware families such as FunnyDream and Chinoxy. Those custom tools are not publicly available and are used by multiple groups believed to be Chinese state-sponsored, the group said.

The targeting also aligns with the political and economic goals of the Chinese government, bolstering the suspicion it is state-sponsored, Insikt said.

“We believe this activity is highly likely to be a state actor as the observed long term targeted intrusions into high value government and political targets is consistent with cyberespionage activity, coupled with identified technical links to known Chinese state-sponsored activity,” the company told The Associated Press.

With migrants in mind, Pope Francis visits Cyprus

  With migrants in mind, Pope Francis visits Cyprus With migrants in mind, Pope Francis visits CyprusNICOSIA (Reuters) - Pope Francis visits Cyprus this week to lend his support to a conflict-riven island now on the front line of a new migratory route for people fleeing their countries for Europe.

State-sponsored Chinese hackers have been broadly targeting government and private sector organizations across Southeast Asia , including the Armed Forces of the Philippines and the Department of Foreign Affairs, according to a report released Wednesday by a U.S.-based private Insikt said it determined that the high-profile military and government organizations in Southeast Asia had been compromised over the last nine months by hackers using custom malware families such as FunnyDream and Chinoxy. Those custom tools are not publicly available and are used by multiple

Skip to main content. Currently Reading. Report: Chinese hackers targeted Southeast Asian nations . The targeting also aligns with the political and economic goals of the Chinese government, bolstering the suspicion it is state-sponsored, Insikt said . “We believe this activity is highly likely to be a state actor as the observed long term targeted intrusions into high value government and political targets is consistent with cyberespionage activity, coupled with identified technical links to known Chinese state-sponsored activity,” the company told The Associated Press.

China’s Foreign Ministry did not immediately respond to a request for comment on the allegations.

In the past, Chinese authorities have consistently denied any form of state-sponsored hacking, instead saying China itself is a major target of cyberattacks.

Of the cyber intrusions it tracked, Insikt Group said Malaysia, Indonesia and Vietnam were the top three targeted countries. Also targeted were Myanmar, the Philippines, Laos, Thailand, Singapore and Cambodia.

All countries were notified in October of the findings, though it is thought that at least some of the activity is ongoing, the company said.

“Throughout 2021, Insikt Group tracked a persistent cyber espionage campaign targeting the prime minister’s offices, military entities, and government departments of rival South China Sea claimants Vietnam, Malaysia, and the Philippines,” the company said. “Additional victims during the same period include organizations in Indonesia and Thailand.”

Putin May 'Expand' Work Abroad with China's Xi as Russia Slams U.S. Moves in Asia

  Putin May 'Expand' Work Abroad with China's Xi as Russia Slams U.S. Moves in Asia Russian President Vladimir Putin and Prime Minister Mikhail Mishustin touted common "principles" between their nation and China when it comes to global affairs.Speaking Tuesday at a plenary session of the Russia Calling! investment forum, Putin lauded the level of joint work between Moscow and Beijing, saying Russia has "many fields of cooperation with China.

Chinese hackers , likely state-sponsored, have been broadly targeting government and private-sector organizations across Southeast Asia , including those closely involved with Beijing on infrastructure development projects, according to a report released Wednesday by a U.S.-based private cybersecurity company. Insikt said it determined that the high-profile military and government organizations in Southeast Asia had been compromised over the last nine months by hackers using custom malware families such as FunnyDream and Chinoxy.

Siemens CEO says Russia sales have halved: newspaper. BERLIN (Reuters) - German industrial group Siemens has seen sales in Russia plunge by about half due to the country's economic demise, Bild am Sonntag reported

Much of that campaign was attributed to a group being tracked under the temporary identifier of Threat Activity Group 16, or TAG-16, Insikt Group said.

“We also identified evidence suggesting that TAG-16 shares custom capabilities with the (China’s) People’s Liberation Army-linked activity group RedFoxtrot,” the group said.

Overall, Insikt Group said it had identified more than 400 unique servers in Southeast Asia communicating with malware, but it was not clear what information had been compromised.

“Many of the identified incidents spanned several months, so it is highly likely that the respective threat actors maintained long-term access to the victim networks and were able to obtain victim data over this time period in support of intelligence gathering efforts,” Insikt told AP. “At this time, we do not have insight into the specific data obtained by the threat actors.”

Some of the information on Indonesia was disclosed in a previous report from the Insikt Group in September, and Indonesian authorities said at he time they had found no evidence their computers had been compromised.

Pro-China group advised by key Biden picks compared DOJ’s China Initiative to ‘McCarthyism’

  Pro-China group advised by key Biden picks compared DOJ’s China Initiative to ‘McCarthyism’ The pro-China business group which counts two key Biden administration picks as strategic advisers likened the Justice Department’s crackdown on Chinese economic espionage to “McCarthyism” in a shocking panel discussion last month. © Provided by Washington Examiner Reta Jo Lewis, Biden’s nominee to run the Export-Import Bank, and Mitch Landrieu, the new infrastructure czar, are both listed as "strategic advisers" for the U.S. Heartland China Association, which regularly works with Chinese organizations tied to the CCP’s United Front — which Xi Jinping has described as a “magic weapon.

Insikt Group said the earlier activity directed at Indonesia from malware servers operated by the “Mustang Panda” group gradually stopped in mid-August, following a second notification the company provided to the country’s authorities.

Indonesian Ministry of Foreign Affairs spokesman Teuku Faizasyah said he did not have any information regarding Insikt Group’s new findings that the ministry had also been targeted.

Similarly, Thailand’s army said it had no immediate information that its cybersecurity team had detected any intrusions into its servers.

Col. Ramon Zagala, spokesman for the Philippine armed forces, said the military had not yet seen Insikt’s report but that “it takes all kinds of potential attacks seriously and has measures in place to protect our vital systems.”

Insikt Group said it had also detected activity in Cambodia and Laos believed linked to Beijing’s Belt and Road Initiative to build ports, railways and other facilities across Asia, Africa and the Pacific.

Poorer countries have welcomed the initiative, but some have complained they are left owing too much to Chinese banks.

Just last week, Laos inaugurated a $5.9 billion Chinese-built railway linking the country with southern China.

“Historically, many Chinese cyber espionage operations have heavily overlapped with projects and countries strategically important to the BRI,” the Insikt Group noted, referring to the Belt and Road Initiative.

Cambodian government spokesman Phay Siphan said the country’s own agencies had not detected any hacking of servers noted by Insikt Group.

Blinken's trip aims to boost U.S. ties with Southeast Asia amid rising tensions with China, says expert .
In his first stop in Indonesia, the top diplomat called on U.S. allies and partners in the region to defend the rules-based order. "Let me be clear: the goal of defending the rules-based order is not to keep any country down. Rather, it's to protect the right of all countries to choose their own path, free from coercion and intimidation, " said Blinken, who will also visit Malaysia and Thailand this week."It's not about a contest between a U.S.-centric region or a China-centric region – the Indo-Pacific is its own region," he added.

usr: 1
This is interesting!