Security News > 2022 > February > Chinese Hackers Target Taiwan's Financial Trading Sector with Supply Chain Attack
An advanced persistent threat group operating with objectives aligned with the Chinese government has been linked to an organized supply chain attack on Taiwan's financial sector.
The second wave of attacks hit a peak between February 10 and 13, 2022, according to a new report published by Taiwanese cybersecurity firm CyCraft, which said the wide-ranging supply chain compromise specifically targeted the software systems of financial institutions, resulting in "Abnormal cases of placing orders."
Quasar RAT is a publicly available open-source remote access trojan written in.
The attacks leveraged a Chinese cloud file sharing service called wenshushu.
The disclosure comes as Taiwan's Parliament, the Executive Yuan, unveiled draft amendments to national security laws aimed at combating Chinese economic and industrial espionage efforts.
To that end, unapproved use of critical national technologies and trade secrets outside of the country could carry up to a 12-year prison sentence.
News URL
https://thehackernews.com/2022/02/chinese-hackers-target-taiwans.html
Related news
- Chinese Nation-State Hackers APT41 Hit Gambling Sector for Financial Gain (source)
- Andariel Hacking Group Shifts Focus to Financial Attacks on U.S. Organizations (source)
- North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks (source)
- Microsoft and DOJ disrupt Russian FSB hackers' attack infrastructure (source)
- Crypto-apocalypse soon? Chinese researchers find a potential quantum attack on classical encryption (source)
- Supply Chain Attacks Can Exploit Entry Points in Python, npm, and Open-Source Ecosystems (source)
- Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining (source)
- US says Chinese hackers breached multiple telecom providers (source)
- Chinese Hackers Use CloudScout Toolset to Steal Session Cookies from Cloud Services (source)
- North Korean govt hackers linked to Play ransomware attack (source)