Suspected state-backed Chinese hackers used a security loophole in a popular e-mail security appliance to break into the networks of hundreds of public and private-sector organizations globally — nearly a third of them government agencies, including foreign ministries — cybersecurity firm Mandiant said on Thursday.
“This is the broadest cyberespionage campaign known to be conducted by a China-nexus threat actor since the mass exploitation of Microsoft Exchange in early 2021,” Mandiant chief financial officer Charles Carmakal said in an e-mailed statement.
That hack compromised tens of thousands of computers globally.
Photo: AP
In a blog post on Thursday, Google-owned Mandiant expressed “high confidence” that the group exploiting a software vulnerability in Barracuda Networks’ E-mail Security Gateway was engaged in “espionage activity in support of the People’s Republic of China.”
It said the activity began as early as October last year.
The hackers sent e-mails containing malicious attachments to gain access to targeted organizations’ devices and data, Mandiant said.
Of those organizations, 55 percent were from the Americas, 22 percent from the Asia-Pacific region and 24 percent from Europe, the Middle East and Africa.
They included foreign ministries in Southeast Asia, and foreign trade offices and academic organizations in Taiwan and Hong Kong, the company said.
Barracuda on Tuesday last week announced that some of its e-mail security appliances had been hacked as early as October, giving the intruders a back door into compromised networks.
The hack was so severe that the California company recommended fully replacing the appliances.
After discovering it in the middle of last month, Barracuda released containment and remediation patches.
However, the hacking group, which Mandiant identifies as UNC4841, altered their malware to try to maintain access, Mandiant said.
The group “countered with high-frequency operations targeting a number of victims located in at least 16 different countries,” it said.
Word of the breach emerged as US Secretary of State Antony Blinken departs for China this weekend as part of US President Joe Biden’s push to repair deteriorating ties between Washington and Beijing.
His visit had initially been planned for early this year, but was postponed indefinitely after the discovery and shooting down of what the US said was a Chinese spy balloon over the US.
Mandiant said the targeting at the organizational and individual levels focused on issues that are high policy priorities for China, particularly in the Asia-Pacific region.
It said the hackers searched for e-mail accounts of people working for governments of political or strategic interest to China at the time they were participating in diplomatic meetings with other countries.
Chinese Ministry of Foreign Affairs spokesman Wang Wenbin (汪文斌) responded to the report, saying that the “content is far-fetched and unprofessional.”
“American cybersecurity companies continue to churn out reports on so-called cyberattacks by other countries, which have been reduced to accomplices for the US government’s political smear against other countries,” Wang said.
EXPRESSING GRATITUDE: Without its Taiwanese partners which are ‘working around the clock,’ Nvidia could not meet AI demand, CEO Jensen Huang said Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) and US-based artificial intelligence (AI) chip designer Nvidia Corp have partnered with each other on silicon photonics development, Nvidia founder and CEO Jensen Huang (黃仁勳) said. Speaking with reporters after he met with TSMC chairman C.C. Wei (魏哲家) in Taipei on Friday, Huang said his company was working with the world’s largest contract chipmaker on silicon photonics, but admitted it was unlikely for the cooperation to yield results any time soon, and both sides would need several years to achieve concrete outcomes. To have a stake in the silicon photonics supply chain, TSMC and
‘DETERRENT’: US national security adviser-designate Mike Waltz said that he wants to speed up deliveries of weapons purchased by Taiwan to deter threats from China US president-elect Donald Trump’s nominee for US secretary of defense, Pete Hegseth, affirmed his commitment to peace in the Taiwan Strait during his confirmation hearing in Washington on Tuesday. Hegseth called China “the most comprehensive and serious challenge to US national security” and said that he would aim to limit Beijing’s expansion in the Indo-Pacific region, Voice of America reported. He would also adhere to long-standing policies to prevent miscalculations, Hegseth added. The US Senate Armed Services Committee hearing was the first for a nominee of Trump’s incoming Cabinet, and questions mostly focused on whether he was fit for the
IDENTITY: Compared with other platforms, TikTok’s algorithm pushes a ‘disproportionately high ratio’ of pro-China content, a study has found Young Taiwanese are increasingly consuming Chinese content on TikTok, which is changing their views on identity and making them less resistant toward China, researchers and politicians were cited as saying by foreign media. Asked to suggest the best survival strategy for a small country facing a powerful neighbor, students at National Chia-Yi Girls’ Senior High School said “Taiwan must do everything to avoid provoking China into attacking it,” the Financial Times wrote on Friday. Young Taiwanese between the ages of 20 and 24 in the past were the group who most strongly espoused a Taiwanese identity, but that is no longer
A magnitude 6.4 earthquake and several aftershocks battered southern Taiwan early this morning, causing houses and roads to collapse and leaving dozens injured and 50 people isolated in their village. A total of 26 people were reported injured and sent to hospitals due to the earthquake as of late this morning, according to the latest Ministry of Health and Welfare figures. In Sising Village (西興) of Chiayi County's Dapu Township (大埔), the location of the quake's epicenter, severe damage was seen and roads entering the village were blocked, isolating about 50 villagers. Another eight people who were originally trapped inside buildings in Tainan
RSS