Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?
China-Linked Cyber Attack Hits Russian Government: Kaspersky Reveals EastWind Malware Campaign
Cyber-spies linked to China have infected Russian government computers with backdoors and trojans since late July, reports Kaspersky. The EastWind attacks involve phishing emails and use cloud services like Dropbox and Quora for command-and-control. Malware such as GrewApacha and CloudSorcerer are central to the campaign.
Hot Take:
Looks like the Russian bear has a Chinese dragon problem, and it’s not a friendly game of Mahjong. When cyber-spies start using Quora and Dropbox as their secret lairs, you know the espionage game has leveled up!
Key Points:
- Cyber-spies with suspected Chinese ties have infected Russian government and IT systems.
- The attacks, dubbed EastWind, are linked to APT27 and APT31 groups.
- Phishing emails and cloud services like GitHub and Dropbox were used for malware distribution.
- Malware includes the GrewApacha trojan and CloudSorcerer backdoor.
- EastWind campaign shows collaboration between nation-state-backed cyber crews.
Already a member? Log in here