Chinese Hackers Use Trusted ArcGIS App For Year-Long Persistence
A report by ReliaQuest reveals that the Flax Typhoon attackers maintained year-long access to an ArcGIS system.
Security teams are urged to adopt proactive threat hunting after the discovery of a campaign where Chinese hackers used novel techniques to turn trusted software components into persistent backdoors.
ReliaQuest attributed the campaign to the Flax Typhoon APT group, a likely state-sponsored outfit known for precise, high impact attacks, such as those targeting Taiwanese organizations.
The adversaries targeted a legitimate public-facing ArcGIS application, which is used to manage spatial data for disaster recovery, emergency management, and other critical functions.
Security teams have been urged to adopt proactive threat hunting after a new report revealed how Chinese hackers used novel techniques to turn trusted software components into persistent backdoors.
Author summary: Chinese hackers used ArcGIS app for year-long access.
- Target: ArcGIS system
- Attackers: Flax Typhoon APT group
- Technique: Turning trusted software components into persistent backdoors
More News
- Shut Down Trump’s Invasion of Chicago
- Brendan Gallagher: No-one is immune to this awful disease
- Lilley: Is Carney ready to surrender Canada's auto industry?
- Fortescue cuts hundreds of jobs in UK and Australia as it sends EV motor making to China
- How Horror Movies and Women’s Rights Have Been ‘in Lockstep’ Since the 1970s
- Saleshando calls Boko to account for health emergency
- Brendan Gallagher: Furious little bull who was as hard as nails
- Recap: Luka Doncic Impresses In Preseason Debut But Lakers Fall To Suns
- WPP continues AI overhaul with $400-million Google partnership | Advertising | Campaign India
- Sinn Fein says Government have failed people with disabilities - Midwest Radio