August 10, 2022
1 min read

Chinese hackers target govt agencies globally

The researchers tagged TA428, a Chinese-speaking APT group, behind the series of attacks using six backdoor malware…reports Asian Lite News

China-based hackers attacked military industrial plants, research institutes, government agencies and ministries in several countries and were able to even hijack the IT infrastructure of some, taking control of systems used to manage security solutions, a new report has revealed.

Researchers at cyber-security firm Kaspersky detected a wave of targeted attacks on military industrial complex enterprises and public institutions in several Eastern European countries and Afghanistan.

“In the course of our research, we were able to identify over a dozen of attacked organisations,” the researchers said.

The analysis suggests that “it is highly probable that a Chinese-speaking group is behind the attacks”.

The researchers tagged TA428, a Chinese-speaking APT group, behind the series of attacks using six backdoor malware.

The attackers penetrated the enterprise network using carefully crafted phishing emails.

“In the course of our investigation, we discovered that, in some cases, the attackers create phishing emails using information that is not publicly available, such as the full names of employees responsible for handling sensitive information, as well as internal codenames of projects developed by attacked organisations,” the team noted.

Phishing emails contain Microsoft Word documents with embedded malicious code that exploits the CVE-2017-11882 vulnerability, which enables an attacker to execute arbitrary code without any additional user activity.

In the new series of attacks, the attackers used six different backdoors at the same time — probably to set up redundant communication channels with infected systems in case one of the malicious programmes was detected and removed by a security solution.

“The backdoors used provide extensive functionality for controlling infected systems and collecting confidential data,” said Kaspersky.

The attack targeted industrial plants, design bureaus and research institutes, government agencies, ministries and departments in several East European countries (Belarus, Russia, and Ukraine), as well as Afghanistan, it added.

ALSO READ: China preparing for invasion, says Taiwan

Previous Story

OPPO, OnePlus stop smartphone sales in Germany

Next Story

IOM :Egypt hosts 9 mn int’l migrants from 130 countries

Latest from -Top News

Pahalgam Bled, But Kashmir Didn’t Bow

Pahalgam was the latest act in a long campaign of Pakistan-based militancy aimed at destabilizing Kashmir, especially as the region has gained strength through development,…writes John Spencer On April 22, 2025, gunmen

India–EFTA Trade Deal Gets Swiss Nod

Switzerland Ratifies Landmark EFTA-India Trade Pact, Paving Way for $100 Billion Investment…reports Asian Lite News Switzerland has ratified the Trade and Economic Partnership Agreement (TEPA) between India and the European Free Trade

Jaishankar Meets SCO Chief

Jaishankar is on a three-day visit to China to attend the Foreign Ministers’ Meeting of the SCO member states being held in Tianjin….reports Asian Lite News External Affairs Minister S. Jaishankar met

Jaishankar Bats for Better Ties with China

Jaishankar underlined the importance of open dialogue and the exchange of perspectives as essential between two major neighbours and economies….reports Asian Lite News External Affairs Minister S. Jaishankar, in talks with Chinese

UN slams resumption of Houthi attacks

In the first such incidents for more than six months, the Yemeni group seized and then scuttled two Liberian-flagged bulk carriers operated by Greek shipping firms, leaving four seafarers presumed dead and
Go toTop

Don't Miss

Futuristic Chinese give short shrift to B’desh’s tumultuous birth

The Chinese, though heavily invested in the country, however seem

US must prepare for China’s invasion of Taiwan this year: CNO

Gilday was asked about Xi’s speech and whether he agreed