Google Disrupts China-Tied Cyber Campaign That Hacked 42 Countries

5Mind. The Meme Platform

Google Threat Intelligence Group (GTIG) said on Feb. 25 that Google and certain of its cybersecurity partners disrupted a global espionage campaign that the group confirmed had hacked 42 countries and suspects infected at least 20 more.

GTIG has tracked the group as UNC2814/Gallium since 2017 and suspects it to be Chinese.

“This prolific, elusive actor has a long history of targeting international governments and global telecommunications organizations across Africa, Asia, and the Americas,” the report reads.

The campaign is characterized by stealth tactics and the targeting of cloud-hosted products to disguise its traffic. The group stated that this campaign is distinct and separate from Salt Typhoon, a major Chinese regime-backed cyberespionage campaign.

“This was a vast surveillance apparatus used to spy on people and organizations throughout the world,” said John Hultquist, GTIG chief analyst.

GTIG said its disruption efforts have terminated the group’s access to a backdoor, disabled its infrastructure, and revoked its accounts and access to relevant Google products.

The campaign came on the heels of the discovery of a novel backdoor the group used that Google tracks as Gridtide, “a sophisticated C-based backdoor with the ability to execute arbitrary shell commands, upload files, and download files.”

Charley Snyder, GTIG senior manager, said the backdoor was installed on a system that had access to phone numbers, dates and places of birth, voter IDs, and national ID numbers.

The group’s recent activity has targeted telecommunication providers and government organizations, according to the report.

“This prolific scope is likely the result of a decade of concentrated effort,” the report reads.

Google recently warned that foreign adversaries are targeting the U.S. defense industrial base in cyberspace. In a Feb. 10 report, it said that groups in Russia, North Korea, and primarily China have carried out sustained cyberattacks in recent months, the most active ever observed and posing “significant risk to the defense and aerospace sector.”

In both reports, Google found that edge devices were being exploited, highlighting the trend of malicious cyberactors targeting hardware such as routers, controllers, sensors, and smart devices that don’t have the same level of security as devices at the center of a network.

By Catherine Yang

Read Full Article on TheEpochTimes.com

Contact Your Elected Officials
The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.

Ring That Bell

If I could travel back in time to 1776,...

Thoughts On America 250

Before you, American reader, is the honor, blessing, and privilege of celebrating the 250th anniversary of our nation. A nation toward which God has been merciful, shining His great grace.
00:09:03

Two birthdays apart

The Bicentennial was not just a commemoration of 200 years of independence – it was a coast‑to‑coast block party of red, white and blue.
00:02:31

Is Charlie Kirk’s Assassination Looking More Like a Conspiracy?

Enough videos have been posted to the internet, plenty...

Is There a 9/11 WTC and 9/10 Charlie Kirk Connection?

Strange parallels in online stories raise questions about whether Israelis and Mossad intelligence are our allies or adversaries.
00:07:24

Labor Department Launches ‘Major Investigation’ Into H-1B Visa Fraud

The Trump administration this week launched what it described as a “major investigation” into alleged fraud in the H-1B visa system.

USPS to Raise Stamp Price to 82 Cents on July 12

Domestic postcard prices will be raised by four cents...

Federal Judge Orders DHS Not to Obey Immigration Database Order From Another Judge

A federal judge said the Trump admin must not comply with order from another federal judge and must continue to have key functions of an immigration database disabled.

Jack Smith’s Team Exposed Classified Materials, Senator Finds

Jack Smith left classified materials unsecured and provided materials to at least one person without confirming that person needed to see them.

Trump Warns of Global Spread of Communism at NATO Summit

President Trump reiterated his warnings about communism during the NATO summit in Ankara on July 8, saying he believes it’s taking root in the US and around the world.

Trump Arrives in Ankara to Meet With NATO Allies

It marks the first visit to Turkey by a...
00:01:40

President Launches Trump Accounts for Children With Historic Opening of NYSE, NASDAQ

President Trump rang a bell to open the New York Stock Exchange and NASDAQ during an Oval Office ceremony to launch accounts for children across the nation.

Trump Shares New US Passport Design on Truth Social

The mockup shows limited-edition passports planned for a July...
spot_img

Related Articles

Popular Categories

MAGA Business Central