Chinese Hackers Use Trusted ArcGIS App For Year-Long Persistence
A report by ReliaQuest reveals that the Flax Typhoon attackers maintained year-long access to an ArcGIS system.
Security teams have been urged to adopt proactive threat hunting after the report revealed how Chinese hackers used novel techniques to turn trusted software components into persistent backdoors.
ReliaQuest attributed the campaign to the “Flax Typhoon” APT group, a likely state-sponsored outfit known for “precise, high impact” attacks, such as those targeting Taiwanese organizations.
The adversaries targeted a legitimate public-facing ArcGIS (geographic information system) application.
This software allows organizations to manage spatial data for disaster recovery, emergency management and other critical functions.
Author's summary: Chinese hackers used ArcGIS app for year-long persistence.
- Target: ArcGIS system
- Attackers: Flax Typhoon APT group
- Technique: Turning trusted software into backdoors
More News
- ANDREW PIERCE: Did Tony Blair help sweeten Andrew's Royal Lodge deal?
- Tired of Wordle? Try These Other Word Games Next
- Who is Mike Smith’s wife? All about Trailer Park Boys star’s family amid sexual assault arrest and charge
- Prince Harry, Meghan Markle step out in style to attend Kris Jenner’s 70th James Bond-themed birthday party | Mint
- The Dismissal deniers | The Spectator Australia
- Tsunami threat passes following magnitude 6.9 quake off Iwate