Skip to main content

US Indicts Two Chinese Government Hackers Over Global Hacking Campaign


The US Department of Justice on Thursday charged two Chinese hackers associated with the Chinese government for hacking numerous companies and government agencies in a dozen countries.

The Chinese nationals, Zhu Hua (known online as Afwar, CVNX, Alayos and Godkiller) and Zhang Shilong (known online as Baobeilong, Zhang Jianguo and Atreexp), are believed to be members of a state-sponsored hacking group known as Advanced Persistent Threat 10 (APT 10) or Cloudhopper that has been working from over a decade to steal business and technology secretsfrom companies and government agencies around the world.

According to the indictment, the alleged hackers targeted more than 45 companies and government agencies from 2006 to 2018 and stole "hundreds of gigabytes" of sensitive data and personal information from its targets.

Both Hua and Shilong worked for Huaying Haitai Science and Technology Development Company and are alleged to have committed these crimes at the direction of Tianjin State Security Bureau, a department of China's Ministry of State Security.

The victims included numerous managed service providers (MSPs), the U.S. Navy, NASA Goddard Space Center, and Jet Propulsion Laboratory, and the Department of Energy's Lawrence Berkeley National Laboratory.
"This case is significant because the defendants are accused of targeting and compromising Managed Service Providers, or MSPs. MSPs are firms that other companies trust to store, process, and protect commercial data, including intellectual property and other confidential business information," the DoJ says.
"When hackers gain access to MSPs, they can steal sensitive business information that gives competitors an unfair advantage."
Other victims included a major financial institution, three telecommunications, and consumer electronics companies, two business consultancies, a healthcare company, a mining company, three commercial and industrial manufacturing companies, an oil and gas exploration company, a biotechnology firm, an automotive supplier and a drilling company.

These targeted companies had victims in 12 countries including Brazil, Canada, Finland, France, Germany, India, Japan, Sweden, Switzerland, the United Arab Emirates, the United Kingdom, and the United States.

Besides this, these Chinese hackers are also accused of gaining access to over 40 computers on U.S. Navy networks and stealing the Social Security numbers (SSNs), phone numbers, email addresses and other personal information of more than 100,000 Navy personnel.

The United States accused Chinese government of violating the commitment of not stealing trade secrets and other confidential business information through computer hacking that the country made to members of the international community in 2015.

The duo is now wanted by the FBI and has been charged with conspiracy to commit computer intrusions, conspiracy to commit wire fraud, and aggravated identity theft.

The indictment against two hackers came less than two months after the DoJ charged 10 Chinese hackers also linked to APT10, including two intelligence officers, for stealing aircraft engine technology from American and French aerospace firms.

Comments

Popular posts from this blog

Tr0ll 1.0 – Vulnhub CTF Challenge Walkthrough

  Tr0ll 1.0 is an intentionally vulnerable machine, which is more of a   CTF  like type than real world scenario. Nevertheless, this machine has its own difficulties and you can learn some new stuff from it. So, let’s start. Enumeration Phase Let’s first run  netdiscover  to find the IP of our machine. netdiscover -r 192.168.1.1/24 After that, we run our typical  nmap  scan to see the open ports in the machine. nmap -A -sS -Pn -vv [target] Great we see many interesting stuff here. First of all, there is an open  FTP  port and we can connect to it with  anonymous access .  Also there is an open  http  port, we will run a nikto scan for it. The  ssh  port will be valuable later. From the nikto scan we got an interesting  /secret/  folder. When we get inside, we can understand why the machine got this name. Nothing interesting here, as you can see. we got trolled Let’s connect to the ftp server. When we get asked for the username we type ‘ anonymous ‘ and we l

Digital Marketing Services in noida

Red Securium Company Provide Digital Marketing Service In Noida Strengthen your brand positioning, awareness, revenue objectives and market share with our custom-built digital marketing services to suit their business needs. Get easily accessible to your target audience on mobiles and social networking sites across different platforms. Our cross-functional digital marketing experts offer end-to-end digital marketing solutions that are in step with your business's goals and policies. Our targeted digital marketing campaigns are custom-structured for helping you in strengthening your brand positioning, awareness, revenue objectives and market share. Digital Marketing Services  Digital Marketing Service  Social Network Marketing Service Seo Services Marketing  PPC Marketing Service  Social Media Marketing Sales Generation Services  Mobile Marketing Service  Content Marketing Service Event Marketing Service  Video Marketing Service Video Lo

Uber fined $1.1 million by UK and Dutch regulators over 2016 data breach

British and Dutch data protection regulators Tuesday hit the ride-sharing company Uber with a total fine of $1,170,892 (~ 1.1 million) for failing to protect its customers’ personal information during a 2016 cyber attack involving millions of users. Late last year, Uber unveiled that the company had suffered a  massive data breach  in October 2016, exposing names, email addresses and phone numbers of 57 million Uber riders and drivers along with driving license numbers of around 600,000 drivers. Besides this, it was also reported that instead of disclosing the breach at the time, the company  paid $100,000 in ransom  to the two hackers with access to the stolen data in exchange for keeping the incident secret and deleting the information. Today Britain’s Information Commissioner’s Office (ICO)  fined  Uber 385,000 pounds ($491,102), while the Dutch Data Protection Authority (Dutch DPA)  levied  a 600,000 euro ($679,790) penalty on Uber for failing to protect the personal informa