Security News > 2023 > September > Microsoft, recently busted by Beijing, thinks it's across China's ever-changing cyber-offensive
Microsoft, which earlier this week admitted not being able to detect a Chinese attack on its own infrastructure, has published a report [PDF] titled "Digital threats from East Asia increase in breadth and effectiveness." In the report, Redmond's Threat Intelligence group expounds on its fresh insight into evolving online aggressions from both China and North Korea.
The report details the work of a group Microsoft has named "Raspberry Typhoon" that "Typically conducts intelligence collection and malware execution" and likes to target ministries that oversee defense, intelligence, economic matters, and trade.
The report calls out North Korea for co-ordinated activity aimed at the maritime sector, with three threat actors - Ruby Sleet, Diamond Sleet, and Sapphire Sleet - spending late 2022 and early 2023 working together to target the maritime and shipbuilding sector.
The report points out that after the three-party maritime campaign ended, North Korea may have launched missiles from submarines and deployed underwater drones.
The researchers suggest China and North Korea will dish up more of the same in coming months and years, with emphasis on operations related to the 2024 presidential election in the United States.
Just as this report - and many like it - are critical of China and North Korea, and silent on the extent and variety of cyber-ops conducted by other nations.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/09/08/microsoft_east_asia_infosec_report/
Related news
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- U.S. Cyber Safety Board Slams Microsoft Over Breach by China-Based Hackers (source)
- Think tank: China's tech giants refine and define Beijing's propaganda push (source)