U.S. and Allies Warn Companies of China-Linked Hacker Group BlackTech Targeting Tech Firms and Governments

U.S., Japan, and other authorities issued a cybersecurity advisory warning companies about China-linked hacking group BlackTech.
BlackTech has targeted governments and tech companies in the U.S., East Asia, and Japan since around 2010.
BlackTech has capabilities to modify routers and exploit domain relationships to hack headquarters.
In 2020, Taiwan linked BlackTech to cyberattacks on 6,000 government officials' emails.
The advisory urges firms to review routers at subsidiaries to minimize risk of potential BlackTech attacks.

reuters.com

Relevant topic timeline:

8/7/2023

China reportedly had ‘deep, persistent access’ to Japanese networks for months

Main topic: Cybersecurity breach in Japan's defense networks by hackers from China. Key points: 1. Hackers from China had "deep, persistent access" to Japanese defense networks. 2. The breach was discovered by the National Security Agency in late 2020 and persisted through the end of the Trump administration and early 2021. 3. Japan initially declined assistance from US Cyber Command and opted for domestic commercial security firms, but later adopted a more active national security strategy, including the establishment of a new cyber command and the addition of 4,000 cybersecurity personnel.

9/11/2023

U.S. and Canada Cybersecurity Chiefs Tackle Common Adversaries and AI Threats

The United States and Canada's top cybersecurity officials express concern about the formidable threat posed by China.

9/27/2023

US, Japan Accuse Chinese Hackers of Hiding in Cisco Routers to Steal Data

Chinese government-backed cyber-espionage group BlackTech is suspected of using Cisco routers to steal sensitive data, according to a joint advisory from US and Japanese officials, who warned that the group has the capability to modify router firmware undetected. The advisory emphasizes the need for companies to update, patch, and secure their network devices.

10/22/2023

Five Eyes Leaders Warn China Poses Major Espionage Threat Through Fake LinkedIn Accounts, Intimidation Campaigns, and Hacking

China poses an unprecedented global espionage threat, targeting professional networking sites like LinkedIn to steal intellectual property and using a program called Operation Fox Hunt to harass and intimidate Chinese dissidents abroad, according to intelligence leaders from the Five Eyes alliance.

Topics

Posted 9/28/2023, 6:54:43 AM