Menu
Hackers hit global telcos in espionage campaign: cyber research firm

Hackers hit global telcos in espionage campaign: cyber research firm

Attackers compromised companies in more than 30 countries

Credit: REUTERS/Kacper Pempel/Illustration

Hackers broke into the systems of more than a dozen global telecoms companies and took large amounts of personal and corporate data, according to a cyber security company identifying links to previous Chinese cyber-espionage campaigns.

Investigators at US-Israeli cyber security firm Cybereason said the attackers compromised companies in more than 30 countries and aimed to gather information on individuals in government, law-enforcement and politics.

The hackers also used tools linked to other attacks attributed to Beijing by the United States and its Western allies, said Lior Div, chief executive of Cybereason.

"For this level of sophistication it's not a criminal group. It is a government that has capabilities that can do this kind of attack," he told Reuters.

China has repeatedly denied involvement in any hacking activity.

Cybereason declined to name the companies affected or the countries they operate in, but people familiar with Chinese hacking operations said Beijing was increasingly targeting telcos in Western Europe.

Western countries have moved to call out Beijing for its actions in cyberspace, warning that Chinese hackers have compromised companies and government agencies around the world to steal valuable commercial secrets and personal data for espionage purposes.

Div said this latest campaign, which his team uncovered over the last nine months, compromised the internal IT network of some of those targeted, allowing the attackers to customise the infrastructure and steal vast amounts of data.

In some instances, they managed to compromise a target's entire active directory, giving them access to every username and password in the organisation. They also got hold of personal data, including billing information and call records, Cybereason said in a blog post.

"They built a perfect espionage environment," said Div, a former commander in Israel's military intelligence unit 8200. "They could grab information as they please on the targets that they are interested in."

Cybereason said multiple tools used by the attackers had previously been used by a Chinese hacking group known as APT10.

The United States indicted two alleged members of APT10 in December and joined other Western countries in denouncing the group's attacks on global technology service providers to steal intellectual property from their clients.

The company said on previous occasions it had identified attacks it suspected had come from China or Iran but it was never certain enough to name these countries.

Cybereason said: "This time as opposed to in the past we are sure enough to say that the attack originated in China."

"We managed to find not just one piece of software, we managed to find more than five different tools that this specific group used," Div said.

(By Ari Rabinovitch and Tova Cohen. Additional reporting by Jack Stubbs. Editing by Jane Merriman)


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags Chinacyber securityhackersCyberreason

Featured

Slideshows

Reseller News Platinum Club celebrates leading partners in 2019

Reseller News Platinum Club celebrates leading partners in 2019

The leading players of the New Zealand channel came together to celebrate a year of achievement at the annual Reseller News Platinum Club lunch in Auckland. Following the Reseller News Innovation Awards, Platinum Club provides a platform to showcase the top performing partners and start-ups of the past 12 months.

Reseller News Platinum Club celebrates leading partners in 2019
Reseller News hosts alumnae breakfast for Women in ICT Awards

Reseller News hosts alumnae breakfast for Women in ICT Awards

Reseller News hosted its second annual alumnae breakfast for the Women in ICT Awards in New Zealand, designed to showcase the leading female leaders in the industry. Held at The Cordis in Auckland, attendees came together to hear inspiring keynotes and panel discussions, alongside high-level networking among peers. Photos by Gino Demeer.

Reseller News hosts alumnae breakfast for Women in ICT Awards
Reseller News Innovation Awards 2019: meet the winners

Reseller News Innovation Awards 2019: meet the winners

Reseller News honoured the standout players of the New Zealand channel in front of more than 480 technology leaders in Auckland on 23 October, recognising the achievements of top partners, emerging entrants and innovative start-ups.

Reseller News Innovation Awards 2019: meet the winners
Show Comments