UNITED STATES NEWS

Security firm: Chinese hackers broke into email security appliance in spying campaign

Jun 15, 2023, 6:02 AM | Updated: 6:14 am

Suspected state-backed Chinese hackers used a security hole in a popular email security appliance to break into the networks of hundreds of public and private sector organizations globally, nearly a third of them government agencies including foreign ministries, the cybersecurity firm Mandiant said Thursday.

“This is the broadest cyber espionage campaign known to be conducted by a China-nexus threat actor since the mass exploitation of Microsoft Exchange in early 2021,” Charles Carmakal, Mandiant’s chief technical officler, said in a emailed statement. That hack compromised tens of thousands of computers globally.

In a blog post Thursday, Google-owned Mandiant expressed “high confidence” that the group exploiting a software vulnerability in Barracuda Networks’ Email Security Gateway was engaged in “espionage activity in support of the People’s Republic of China.” It said the activivity began as early as October.

The hackers sent emails containing malicious file attachments to gain access to targeted organizations’ devices and data, Mandiant said. Of those organizations, 55% were from the Americas, 22% from Asia Pacific and 24% from Europe, the Middle East and Africa and they included foreign ministries in Southeast Asia, foreign trade offices and academic organizations in Taiwan and Hong Kong. the company said.

Mandiant said the majority impact in the Americas may partially reflect the geography of Barracuda’s customer base.

Barracuda announced on June 6 that some of its its email security appliances had been hacked as early as October, giving the intruders a back door into compromised networks. The hack was so severe the California company recommended fully replacing the appliances.

After discovering it in mid-May, Barracuda released containment and remediation patches but the hacking group, which Mandiant identifies as UNC4841, altered their malware to try to maintain access, Mandiant said. The group then “countered with high frequency operations targeting a number of victims located in at least 16 different countries.”

Mandiant said the targeting at both the organizational and individual account levels, focused on issues that are high policy priorities for China, particularly in the Asia Pacific region. It said the hackers searched for email accounts of people working for governments of political or strategic interest to China at the time they were participating in diplomatic meetings with other countries.

The U.S. government has accused Beijing of being its principal cyberespionage threat, with state-backed Chinese hackers stealing data from both the private and public sector.

China says the U.S. also engages in cyberespionage against it, hacking into computers of its universities and companies.

——

AP Business Writer Zen Soo contributed from Hong Kong.

United States News

Associated Press

3 Alabama men die after becoming distressed while swimming at Florida beach

PANAMA CITY BEACH, Fla. (AP) — Three Alabama men have died from likely drowning after becoming distressed while swimming at a Florida Panhandle beach, authorities said Saturday morning. The young men had traveled to the Panama City Beach area Friday evening, the Bay County Sheriff’s Office said in a Facebook post. The sheriff’s office received […]

19 minutes ago

Associated Press

New Mexico heavy rain and flash flooding prompt mandatory evacuations

LAS VEGAS, N.M. (AP) — Heavy rain and flash flood warnings in New Mexico prompted officials to order some mandatory evacuations, with shelters set up for displaced residents. The National Weather Service office announced a flash flood emergency on Friday night through early Saturday. The impacted areas included the city of Las Vegas, New Mexico […]

6 hours ago

Associated Press

Parts of Washington state parental rights law criticized as a ‘forced outing’ placed on hold

SEATTLE (AP) — A judge has paused parts of a new Washington state parental rights law derided by critics as a “forced outing” measure. King County Superior Court Judge Michael Scott on Friday paused portions of the law while a lawsuit brought by civil liberties groups and others is pending, The Seattle Times reported. The […]

11 hours ago

Associated Press

Ex-CEO of Nevada-based health care company Ontrak convicted of $12.5 million insider trading scheme

LOS ANGELES (AP) — The former CEO and chairman of Ontrak, a publicly traded health care company based in Nevada, was found guilty Friday of a multimillion-dollar insider trading scheme. A federal jury in Los Angeles convicted Terren Scott Peizer, a resident of Puerto Rico and Santa Monica, California, of one count of securities fraud […]

13 hours ago

Associated Press

Lockheed Martin subsidiaries reach $70 million settlement for claims they overcharged Navy for parts

STRATFORD, Conn. (AP) — Two Lockheed Martin subsidiaries have agreed to pay the federal government $70 million for overcharging the Navy for aircraft parts, the U.S. Department of Justice announced Friday. The federal agency says Sikorsky Support Services, based in Stratford, Connecticut, and Derco Aerospace, headquartered in Milwaukee, Wisconsin, knowingly entered into an improper subcontract […]

13 hours ago

Associated Press

Man accused in killing and kidnappings in Louisiana waives extradition

JACKSON, Miss. (AP) — A man arrested in the slaying of a Louisiana woman and abduction of her two daughters and subsequent death of one of them waived extradition Friday in federal court in Mississippi, clearing the way for his return to Louisiana to face trial. During his court appearance in Jackson, Daniel Callihan, 36, […]

14 hours ago

Sponsored Articles

...

Condor Airlines

Condor Airlines can get you smoothly from Phoenix to Frankfurt on new A330-900neo airplane

Adventure Awaits! And there's no better way to experience the vacation of your dreams than traveling with Condor Airlines.

...

Midwestern University

Midwestern University Clinics: transforming health care in the valley

Midwestern University, long a fixture of comprehensive health care education in the West Valley, is also a recognized leader in community health care.

...

Collins Comfort Masters

Here’s 1 way to ensure your family is drinking safe water

Water is maybe one of the most important resources in our lives, and especially if you have kids, you want them to have access to safe water.

Security firm: Chinese hackers broke into email security appliance in spying campaign