The Chinese hackers are distributing backdoored Web3 wallets, primarily targeting searches for Coinbase Wallet, imToken, MetaMask and Token Pocket, and are focused on both iOS and Android users.
Cyber espionage group is thought to have been in action since at least 2013, with a heavy focus on certain APAC countries and regions. The Chinese hackers also focuses in on political targets.
Advisory warns that state-backed Chinese hackers have deep penetration into "major" US telcos, and are getting in by compromising an assortment of networking equipment and routers.
The purpose of the cyber attack on WSJ appeared to be espionage, with information exfiltrated from email and Google Drive accounts since at least February 2020. Mandiant believes government-backed Chinese hackers conducted the operation.
Palo Alto Networks identified a Chinese cyber espionage campaign targeting 370 critical infrastructure, education, healthcare, and technology organizations through vulnerable Zoho servers.
The Metropolitan Transportation Authority says that Chinese hackers breached three computers in the New York subway via Ivanti’s Pulse Connect Secure VPN critical vulnerabilities.
McAfee researchers discovered a cyber espionage campaign involving Chinese Red Delta and Mustang Panda hackers trying to steal 5G technology secrets using a fake Huawei website.
Microsoft says state-sponsored Chinese hackers exploited four Microsoft Exchange mail server zero-day vulnerabilities. CISA warned of potential widespread exploitation.
Suspected Chinese hackers exploited a second SolarWinds hack to compromise the National Finance Center, which processes salaries for agencies including the FBI and the DHS.
NSA released a list of the 25 top vulnerabilities exploited by state-sponsored Chinese hackers. In response, Beijing accused the US of being an "empire of hacking."
