A cyberespionage campaign that breached nine global agencies, including one in the United States, could have been perpetrated by a group with ties to the Chinese regime.
The campaign resulted in the theft of sensitive documents from an unnamed government agency between September and October, according to a report by Unit 42, a threat intelligence team specializing in cyber risk and incident response at Palo Alto Networks, in partnership with the National Security Agency Cybersecurity Collaboration Center.
âAs early as Sept. 17, the actor leveraged leased infrastructure in the United States to scan hundreds of vulnerable organizations across the internet,â the report reads. âSubsequently, exploitation attempts began on Sept. 22 and likely continued into early October.
âDuring that window, the actor successfully compromised at least nine global entities across the technology, defense, healthcare, energy, and education industries.â…