02-24-2024, 02:30 AM
(02-23-2024, 09:00 PM)Maxmars Wrote: Source article from HITBSecNews: Leaked docs reveal how Chinese state-aligned hackers spy on citizens, foreigners
I have some question, of course, maybe you all know the answers...
A trove of leaked documents from a Chinese state-linked hacking group shows that Beijing’s intelligence and military groups are carrying out large-scale, systematic cyber intrusions against foreign governments, companies and infrastructure — exploiting what the hackers claim are vulnerabilities in U.S. software from companies including Microsoft, Apple and Google.
Question 1 -
The term "Chinese state-linked" means what exactly? Are they "hired" groups (mercenary-esque) who were simply engaged by representatives of the Chinese government? Are they hacking groups who are somehow "loyal" to the Chinese government? Is this sort of like how everyone who hates us in the Middle East is now reported as Iran-linked? I only ask because I always thought of these 'hacking' groups as obtusely non-state-aligned... (except maybe for money.)
Question 2 -
These vulnerabilities they identify in the software of magnificent multinational super-elite software companies... how is it that they are not 'fixed?' Too expensive?
It seems unfair to post more of the content here, since it is a brutally short article, but if you are interested in the kind of "enterprises" that governments go to when they want this kind of work done... this might be a good starting place... when you 'drill down' to their source, the Washington Post, you'll find...
... The documents come from iSoon, also known as Auxun, a Chinese firm headquartered in Shanghai that sells third-party hacking and data-gathering services to Chinese government bureaus, security groups and state-owned enterprises.
The trove does not include data extracted from Chinese hacking operations but lists targets and — in many cases — summaries of sample data amounts extracted and details on whether the hackers obtained full or partial control of foreign systems.
One spreadsheet listed 80 overseas targets that iSoon hackers appeared to have successfully breached. The haul included 95.2 gigabytes of immigration data from India and a 3 terabyte collection of call logs from South Korea’s LG U Plus telecom provider. The group also targeted other telecommunications firms in Hong Kong, Kazakhstan, Malaysia, Mongolia, Nepal and Taiwan...
Interesting stuff, no?
OK... OK... I had to add these the articles I just found... I'm sure you'll see why...
AT&T Says Outage Wasn't Cyberattack Despite Widespread Conspiracy Theories Online
((Subtitled - Social media users speculated it might have been caused by China or a "false flag" staged by "globalists."))
Law professor fears cyberattacks will 'increase, continue' in wake of pharmacy, AT&T outages - (from FOX Business)
((Subtitled - Change Healthcare attack and AT&T cyber threat false alarm transpire on same day))
Just food for thought.
From what I gathered from following this:
Q-1, The CCP is using companies such as I-Soon as a front for gathering intelligence on internal and external matters. In this case, it appears that some person/people in I-Soon decided to leak out information and the CCP decided that it must be a HACK done by other countries. In this case they seem to be blaming the US as that group. Calling the company a "Chinese-Linked" is just them playing on words. Every company ran in China is owned by China, the fact that they got called out by this leak, the CCP can throw I-Soon under the political bus and play the good guys so that the public doesn't grow more discontented over how lopsided the Chinese country has become.
Q-2, Microchips coming out of China have backdoors built in so that Chinese Intelligence Committees can poke their noses into any system with those chipsets in them. Don't think that all those Apple Phones, Android Phones, Lap-Tops, and other such items are clean just because they are brand names. Evidence has shown that Chinese chipsets have been pulled out of iPhones and Laptops.
Imagine those fears about how a Smart TV can keep an eye on you being true, but not in the way you want.