Advertisement
Saturday, Nov 27, 2021
Outlook.com
Outlook.com

Chinese hacking group found spying on Asian organisations

Chinese hacking group found spying on Asian organisations
outlookindia.com
1970-01-01T05:30:00+0530
Chinese hacking group found spying on Asian organisations

New Delhi, May 15 (IANS) An advanced persistent threat (APT) hacking group, believed to be from China, planted backdoors to spy on a telecommunications company, a gas company, and a governmental institution in Asia, said a joint report from cybersecurity teams at Avast and ESET.

The group planted backdoors to gain long-term access to corporate networks, said the report, adding that the group was also perhaps behind attacks active in Mongolia, Russia, and Belarus.

None of the organisations targeted by the group are based in India, Avast said.

Avast believes the group is from China, based on the use of Gh0st Remote Access Trojan (RAT), which has been known to be used by Chinese APT groups in the past and similarities in the code Avast analysed and code recently analysed in a campaign attributed to Chinese actors.

The backdoors gave the actors the ability to manipulate and delete files, take screenshots, alter processes, and services, as well as execute console commands, and remove itself.

Additionally, some commands had the capability to instruct the backdoors to exfiltrate data to a command and control (C&C) server.

Infected devices could also be commanded by a C&C server to act as a proxy or listen on a specific port on every network interface.

The group also used tools such as Gh0st RAT and Management Instrumentation to move laterally within infiltrated networks.

''The group behind the attack frequently recompiled their custom tools to avoid antivirus detection, which, in addition to the backdoors, included Mimikatz and Gh0st RAT,'' said Luigino Camastra, malware researcher at Avast.

''Based on what we have discovered and the fact that we were able to tie elements of these attacks back to attacks carried out on other countries, we assume this group is also targeting further countries.''

Avast said it reported its findings to the local Computer Emergency Response Team team, and reached out to the affected telecommunications company it discovered was under attack.

--IANS

gb/na


Disclaimer :- This story has not been edited by Outlook staff and is auto-generated from news agency feeds. Source: IANS

More from Website

Indonesia Open Badminton: PV Sindhu Bows Down To Thailand’s Ratchanok Inthanon In Semifinals

Indonesia Open Badminton: PV Sindhu Bows Down To Thailand’s Ratchanok Inthanon In Semifinals

PV Sindhu's wait for first BWF title in 2021 continues. PV Sindhu lost to World No.8 Ratchanok Inthanon of Thailand 21-15, 9-21, 14-21 in the semifinals of the Indonesia Open Super 1000 badminton tournament.

Naveen Patnaik: Alumni Of SCB Are Ambassadors Of Odisha In Every Corner Of The World

Naveen Patnaik: Alumni Of SCB Are Ambassadors Of Odisha In Every Corner Of The World

Odisha Chief Minister Naveen Patnaik on Saturday said the service rendered to humanity by SCB Medical College Hospital in Cuttack is unparalleled and its alumni is unmatched.

India’s South Africa Tour: Despite Covid Concerns, Farhan Behardien Hopes Series To Go On

India’s South Africa Tour: Despite Covid Concerns, Farhan Behardien Hopes Series To Go On

The Indian men's senior cricket team is scheduled to play three Tests, three ODIs and four T20 internationals during their tour of South Africa which begins on December 17. India A side is already in the Rainbow nation.

More from Outlook Magazine

Of Protests, Heart Attack And Success: 74-Year-Old Farmer Recalls Her Journey From Amritsar To Singhu

Of Protests, Heart Attack And Success: 74-Year-Old Farmer Recalls Her Journey From Amritsar To Singhu

A 74-year-old woman from Amritsar narrates how she braved social prejudice, bitter cold and a heart attack to stay put at Singhu border with other protestors.

Dissent Is A Work Of Art

Dissent Is A Work Of Art

As a medium of ethical intervention, art has been pivotal in conveying messages of recent protests to the masses

From Arab Spring To Anti-Covid Stir, How The World Is Protesting

From Arab Spring To Anti-Covid Stir, How The World Is Protesting

Democracy is straining at the seams as authoritarian governments across the world lock horns with citizens.

Advertisement

Outlook Newsletters

Advertisement
Advertisement