Chinese hackers, likely state-sponsored, have been broadly targeting government and private-sector organizations across Southeast Asia, including those closely involved with Beijing on infrastructure development projects, a report released on Wednesday by a US-based private cybersecurity company said.
Specific targets included the Thai prime minister’s office and the Thai army, the Indonesian and Philippine navies, Vietnam’s National Assembly and the central office of its Communist Party, and Malaysia’s Ministry of Defense, said Insikt Group, the threat research division of Massachusetts-based Recorded Future.
Insikt said it determined that the high-profile military and government organizations in Southeast Asia had been compromised over the past nine months by hackers using custom malware families such as FunnyDream and Chinoxy.
Those custom tools are not publicly available and are used by multiple groups believed to be sponsored by China, the group said.
The targeting also aligns with the political and economic goals of the Chinese government, bolstering the suspicion it is state-sponsored, Insikt said.
“We believe this activity is highly likely to be a state actor, as the observed long-term targeted intrusions into high-value government and political targets is consistent with cyberespionage activity, coupled with identified technical links to known Chinese state-sponsored activity,” it said.
The Chinese Ministry of Foreign Affairs did not immediately respond to a request for comment on the allegations.
In the past, Chinese authorities have consistently denied any form of state-sponsored hacking, instead saying that China itself is a major target of cyberattacks.
Of the cyberintrusions it tracked, Insikt Group said Malaysia, Indonesia and Vietnam were the top three targeted countries. Also targeted were Myanmar, the Philippines, Laos, Thailand, Singapore and Cambodia.
All countries were notified in October of the findings, although it is thought that at least some of the activity is ongoing, the company said.
“Throughout 2021, Insikt Group tracked a persistent cyberespionage campaign targeting the prime minister’s offices, military entities, and government departments of rival South China Sea claimants Vietnam, Malaysia and the Philippines,” the company said. “Additional victims during the same period include organizations in Indonesia and Thailand.”
Much of that campaign was attributed to a group being tracked under the temporary identifier Threat Activity Group 16, or TAG-16, Insikt Group said.
“We also identified evidence suggesting that TAG-16 shares custom capabilities with the [Chinese] People’s Liberation Army-linked activity group RedFoxtrot,” the group said.
Overall, Insikt Group said it had identified more than 400 unique servers in Southeast Asia communicating with malware, but it was not clear what information had been compromised.
The Ministry of the Interior (MOI) is to tighten rules for candidates running for public office, requiring them to declare that they do not hold a Chinese household registration or passport, and that they possess no other foreign citizenship. The requirement was set out in a draft amendment to the Enforcement Rules of the Public Officials Election and Recall Act (公職人員選舉罷免法 ) released by the ministry on Thursday. Under the proposal, candidates would need to make the declaration when submitting their registration forms, which would be published in the official election bulletin. The move follows the removal of several elected officials who were
The Republic of China (ROC) is celebrating its 114th Double Ten National Day today, featuring military parades and a variety of performances and speeches in front of the Presidential Office in Taipei. The Taiwan Taiko Association opened the celebrations with a 100-drummer performance, including young percussionists. As per tradition, an air force Mirage 2000 fighter jet flew over the Presidential Office as a part of the performance. The Honor Guards of the ROC and its marching band also heralded in a military parade. Students from Taichung's Shin Min High School then followed with a colorful performance using floral imagery to represent Taiwan's alternate name
FOUR DESIGNATED AREAS: Notices were issued for live-fire exercises in waters south and northwest of Penghu, northeast of Keelung and west of Kaohsiung, they said The military is planning three major annual exercises across the army, navy and air force this month, with the navy’s “Hai Chiang” (海強, “Sea Strong”) drills running from today through Thursday, the Ministry of National Defense said yesterday. The Hai Chiang exercise, which is to take place in waters surrounding Taiwan, would feature P-3C Orion maritime patrol aircraft and S-70C anti-submarine helicopters, the ministry said, adding that the drills aim to bolster the nation’s offshore defensive capabilities. China has intensified military and psychological pressure against Taiwan, repeatedly sending warplanes and vessels into areas near the nation’s air defense identification zone and across
A Chinese takeover of Taiwan would severely threaten the national security of the US, Japan, the Philippines and other nations, while global economic losses could reach US$10 trillion, National Security Council Deputy Secretary-General Lin Fei-fan (林飛帆) wrote in an article published yesterday in Foreign Affairs. “The future of Taiwan is not merely a regional concern; it is a test of whether the international order can withstand the pressure of authoritarian expansionism,” Lin wrote in the article titled “Taiwan’s Plan for Peace Through Strength — How Investments in Resilience Can Deter Beijing.” Chinese President Xi Jinping’s (習近平) intent to take Taiwan by force
RSS