Skip to main content

Tag: chinese hackers

23 articles

Government building with technology infrastructure in background.

Chinese Hackers Target Southeast Asia's Energy, Government Sectors

Chinese hackers have launched a stealthy assault on Southeast Asia's energy and government sectors, infiltrating at least ten organizations between October and December 2025. This sophisticated threat, tracked as CL-STA-1062, has been lurking in the shadows since March 2022, using clever tactics like hard-coded encryption keys to evade detection.

Analyst 207
European city street with tech hints and blurred laptop in foreground.

Chinese Hackers Deploy Atlas RAT in Europe With Heightened Cyberattacks

Chinese hackers have significantly ramped up cyberattacks in Europe, with a financially motivated group, tracked as TA4922, launching a high volume of unique campaigns targeting countries including Germany, Italy, and the UK. This surge in activity, which began in March, has been marked by unprecedented diversity in tactics and objectives, including fraud, data theft, and network breaches.

Analyst 207
Workers inspect a shipping container at a busy Gulf port with cargo ships and cranes in the background.

Chinese Hackers Exploit Middle East War to Target Energy, Maritime Firms

Chinese-aligned hackers are intensifying their attacks on maritime and energy companies in the Gulf region, exploiting the Middle East conflict to expand their espionage operations and gain a strategic advantage for Beijing. This alarming surge in cyber threats has been flagged by cybersecurity researchers at ESET.

Analyst 207
Cramped network closet with equipment and cables, and a single laptop in the foreground.

Chinese hackers infiltrate telcos with Showboat, JFMBackdoor malware

Chinese-aligned hackers have been secretly infiltrating telecommunications providers across Asia Pacific and the Middle East since mid-2022, using sneaky malware like Showboat and JFMBackdoor to stay under the radar. They even used a clever "hide" command to conceal their digital footprints on infected machines.

Analyst 207
Government agency office interior with subtle computer equipment hints.

Eset Exposes Chinese Hackers' Careless Backdoor Tactics

Chinese hackers have been caught off guard by their own carelessness, leaving behind a digital trail that exposed their previously undetected backdoor tactics. Researchers uncovered over 9,000 messages revealing the attackers' testing systems and habits, leading to the identification of a Chinese nation-state actor dubbed GopherWhisper.

Analyst 207
Chinese Hackers Revive European Espionage Push

Chinese Hackers Revive European Espionage Push

Chinese hackers, specifically the state-backed group TA416, appear to have hit the pause button on their European espionage operations - but don't take a sigh of relief just yet, as the silence in cyberspace can be deceiving. A cybersecurity firm, Proofpoint, has tracked the group's sudden absence since 2023, leaving defenders wondering if this is a temporary lull or a permanent win.

Analyst 207
Chinese Hackers Exclusive: Dangerous Malware Threat

Chinese Hackers Exclusive: Dangerous Malware Threat

Curious about reports linking Chinese hackers to a new, dangerous malware strain? Get our exclusive breakdown of what it means for your security—and practical steps to stay one step ahead.

Analyst 207
ArcGIS Server Stunning Risk: Backdoor Exposed

ArcGIS Server Stunning Risk: Backdoor Exposed

Think your network’s safe? Researchers say a China-linked group quietly turned an ArcGIS Server into a persistent backdoor for over a year, using it to move laterally and stash tools while going largely unnoticed. It’s a wake-up call to inventory exposed services, patch urgently, and add monitoring so hidden footholds don’t become strategic liabilities.

Analyst 207
ArcGIS application Stunning: Risky Year-Long Persistence

ArcGIS application Stunning: Risky Year-Long Persistence

A security firm found China-aligned hackers living undetected inside a trusted ArcGIS mapping app for over a year, turning a vital tool into a stealthy espionage platform. The takeaway: even everyday operational software needs strict security, continuous monitoring, and zero trust—because convenience shouldn’t mean vulnerability.

Analyst 207
Chinese Hackers Exploit Unpatched Routers to Create ORB Spy Network

Chinese Hackers Exploit Unpatched Routers to Create ORB Spy Network

Chinese hackers leverage unpatched routers to establish an ORB spy network, targeting global data traffic and enhancing cyber surveillance capabilities.

Analyst 207
Cybersecurity Alert: Chinese Hackers ‘Salt Typhoon’ Target Viasat

Cybersecurity Alert: Chinese Hackers ‘Salt Typhoon’ Target Viasat

Chinese hackers, known as ‘Salt Typhoon,’ are targeting Viasat in a significant cybersecurity breach. Stay informed about the latest threats.

Analyst 207
Chinese Hackers Exploit Cityworks Flaw to Target US Local Governments

Chinese Hackers Exploit Cityworks Flaw to Target US Local Governments

Chinese hackers exploited a flaw in Cityworks to target US local governments, exposing vulnerabilities in municipal cybersecurity infrastructure.

Analyst 207
Chinese Hackers Exploit Cityworks Zero-Day Vulnerability to Compromise US Local Governments

Chinese Hackers Exploit Cityworks Zero-Day Vulnerability to Compromise US Local Governments

Chinese hackers exploited a Cityworks zero-day to breach US local governments, sparking urgent cybersecurity reviews and defense measures.

Analyst 207
Chinese Hackers Exploit Ivanti EPMM Vulnerability to Infiltrate Government Agencies

Chinese Hackers Exploit Ivanti EPMM Vulnerability to Infiltrate Government Agencies

Chinese hackers exploited an Ivanti EPMM vulnerability to infiltrate government agencies, triggering urgent cybersecurity alerts and a global patching response.

Analyst 207
Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks

Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks

Chinese hackers exploit Ivanti EPMM bugs to breach global enterprise networks in a new cyberattack wave, exposing vulnerabilities.

Analyst 207
Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization

Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization

Chinese hackers deploy MarsSnake backdoor in a multi-year attack on a Saudi organization, sparking rising global cybersecurity concerns.

Analyst 207
Chinese hackers behind attacks targeting SAP NetWeaver servers

Chinese hackers behind attacks targeting SAP NetWeaver servers

Chinese hackers behind targeted attacks on SAP NetWeaver servers exploit vulnerabilities, escalating global cybersecurity concerns.

Analyst 207
Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell

Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell

Chinese hackers exploit SAP RCE flaw (CVE-2025-31324) using a Golang-based SuperShell, posing significant cybersecurity threats.

Analyst 207
Dutch government building at dusk with eerie glow, devices nearby display distorted map.

Cyber Threats: Russian and Chinese Hackers Set Sights on Dutch Government

Russian and Chinese hackers target the Dutch government, escalating cyber threats and highlighting the need for enhanced cybersecurity measures.

Analyst 207
Chinese Hackers Launch Enhanced RAT Malware Attack on Russian Government

Chinese Hackers Launch Enhanced RAT Malware Attack on Russian Government

Chinese hackers have intensified their cyber warfare, deploying advanced RAT malware to target Russian government systems, raising security concerns.

Analyst 207
Canada Urges Cyberdefenders to Strengthen Edge Device Security

Canada Urges Cyberdefenders to Strengthen Edge Device Security

Canada calls on cyberdefenders to enhance security for edge devices, emphasizing the importance of protecting critical infrastructure from cyber threats.

Analyst 207
Stealthy VShell RAT: The Rise of Chinese Hackers’ Fileless Attacks

Stealthy VShell RAT: The Rise of Chinese Hackers’ Fileless Attacks

Explore the rise of the stealthy VShell RAT, a tool used by Chinese hackers for fileless attacks, evading detection and compromising systems.

Analyst 207
New Chinese-Linked Backdoor Threatens European Companies

New Chinese-Linked Backdoor Threatens European Companies

A new Chinese-linked backdoor poses a significant threat to European companies, compromising security and sensitive data across various industries.

Analyst 207