FlagThis

Security firm Sophos has been engaged in a five-year long battle against a hacking group suspected of originating from Chengdu, China. Sophos discovered that the attackers had planted malware on their own devices, indicating a sophisticated level of intrusion and a desire to gain access to their technology and operations. This revelation provides insight into the methods and techniques being developed by Chinese hackers, showcasing their advanced capabilities and potential for further attacks. Sophos’ experience highlights the ongoing threat posed by Chinese cyber espionage and the need for heightened vigilance and advanced security measures.

References:

• @PrivacyDigest - Inside Sophos' 5-Year War With the Hijacking Its Devices went so far as to plant “implants” on its own devices to catch the hackers at work—and in doing so, revealed a glimpse into China's R&D p - 6d
• Wired - Inside Sophos' 5-Year War With the Hijacking Its Devices went so far as to plant “implants” on its own devices to catch the hackers at work—and in doing so, revealed a glimpse into China's R&D p - 6d
• @BleepingComputer - Sophos has been sparring with Chinese threat actors for over 5 years - 5d
• Over Security - Sophos details a five-year-long battle against Chinese hackers targeting network devices worldwide - 5d
• ciso2ciso.com - Pacific Rim: Inside the Counter-Offensive—The TTPs Used to Neutralize China-Based Threats – Source: news.sophos.com - 5d
• @jos1264 - Pacific Rim: Inside the Counter-Offensive—The TTPs Used to Neutralize China-Based Threats – Source: news.sophos.com - 5d
• Security Affairs - This article provides details about the China-linked threat actor activity targeting network devices. - 4d

Classification:

• HashTags: Sophos CyberEspionage China
• Company: Sophos
• Attacker: Chengdu Hackers
• Type: Espionage
• Severity: Major