Skip to content

Google, CISA Warn of Android Flaw After Reports of Chinese App Zero-Day Exploitation  “Maximizing Your Workday Productivity” “Boosting Your Workday Efficiency”

Android is the world’s most popular mobile operating system, but a vulnerability affecting it has recently been exploited as a zero-day by a Chinese application. On March 21, Google suspended the popular Chinese shopping application Pinduoduo after malware was discovered in versions of the app distributed through other websites. Chinese researchers reported observing malicious behavior… 

Report: Chinese State-Sponsored Hacking Group Highly Active “The Benefits of Eating Healthy Foods” “Reaping the Rewards of a Healthy Diet”

A Chinese hacking group that is likely state-sponsored and has been linked previously to attacks on U.S. state government computers is still “highly active” and is focusing on a broad range of targets that may be of strategic interest to China’s government and security services, according to a new report from a private American cybersecurity… 

Chinese RedGolf Group Targeting Windows and Linux Systems with KEYPLUG Backdoor “Boosting Your Immune System During the COVID-19 Pandemic” “Strengthening Your Immunity During the COVID-19 Crisis”

Mar 30, 2023 saw the uncovering of a custom Windows and Linux backdoor called KEYPLUG, attributed to the Chinese state-sponsored threat activity group RedGolf. The use of KEYPLUG by Chinese threat actors was first disclosed by Google-owned Manidant in March 2022 in attacks targeting multiple U.S. state government networks between May 2021 and February 2022.… 

Chinese Cyberspies Use ‘Melofee’ Linux Malware for Stealthy Attacks “Tips for Working from Home Successfully” “How to Achieve Success When Working from Home”

ExaTrack, a French cybersecurity firm, warns that the discovery of a new clandestine Linux program has enabled the Chinese cyber espionage group Winnti to carry out covert targeted attacks undetected. Dubbed ‘Melofee’ and targeting Linux servers, the malware is accompanied by a kernel mode rootkit and is installed using shell commands, a behavior like that… 

Over 200 Organizations Targeted in Chinese Cyberespionage Campaign “A Look at the Latest Technology in the Automotive Industry” “Exploring the Cutting-Edge Innovations in the Automotive Sector”

According to cybersecurity company Trend Micro, the cyberespionage group Mustang Panda has recently conducted a campaign targeting a range of entities, including those involved in maritime, shipping, border control, and immigration. Also known as Earth Preta, RedDelta, and TA416, Mustang Panda is believed to be operating on behalf of the Chinese government. Previously, the group… 

Researchers Uncover Chinese Nation State Hackers’ Deceptive Attack Strategies

Researchers Uncover Chinese Nation State Hackers’ Deceptive Attack Strategies Mar 24, 2023 was marked as a day of increased cyber threats, with Earth Preta launching its campaign of spear-phishing emails and malicious lures to deploy a wide range of tools for backdoor access, command-and-control (C2), and data exfiltration. Earth Preta disguises malicious payloads in fake… 

Google Suspends Chinese Shopping App Amid Security Concerns

Google Suspends Chinese Shopping App Amid Security Concerns Google has taken swift action to suspend the Chinese shopping app, Pinduoduo, from the Google Play store due to security concerns. Reports suggest that the app could potentially be used to spy on users in the United States, adding to the already high tensions between the two… 

Chinese Hackers Exploit Fortinet Zero-Day Flaw for Cyber Espionage Attack

Chinese Hackers Exploit Fortinet Zero-Day Flaw for Cyber Espionage Attack Mar 18, 2023: A zero-day exploit of a now-patched medium-severity security flaw in the Fortinet FortiOS operating system has been linked to a suspected Chinese hacking group by threat intelligence firm Mandiant. The attack has been tracked under the uncategorized moniker UNC3886 and is part…