China-Linked Hackers Infiltrate Linux Login Software with Decade-Long Backdoor

A stealthy China-linked hacking group, tracked as Velvet Ant, has been quietly infiltrating Linux login software since 2016, embedding a decade-long backdoor that evades routine security cleanups and password resets. This sophisticated operation, dubbed Operation Highland, has allowed the group to fly under the…

https://osintsights.com/china-linked-hackers-infiltrate-linux-login-software-with-decade-long-backdoor?utm_source=mastodon&utm_medium=social

#ChinalinkedHackers #LinuxBackdoor #VelvetAnt #OperationHighland #SupplyChain

China-Linked Hackers Deploy TencShell Malware Against Global Manufacturer

In a clever move, China-linked hackers adapted existing malware tools to create TencShell, using it to launch a stealthy attack on a global manufacturer's Indian site. Fortunately, researchers at Cato Networks' Cyber Threats Research Lab were able to block the intrusion and uncover the sophisticated tactics…

https://osintsights.com/china-linked-hackers-deploy-tencshell-malware-against-global-manufacturer?utm_source=mastodon&utm_medium=social

#ChinalinkedHackers #TencshellMalware #GlobalManufacturer #EmergingThreats #NationState

China-linked hackers exploit Microsoft Exchange in Azerbaijani energy firm attacks.

A group of China-linked hackers, known as FamousSparrow, launched a sustained cyberattack on an Azerbaijani oil and gas company, exploiting Microsoft Exchange vulnerabilities in a multi-wave intrusion that spanned three months. The attackers used the ProxyNotShell exploit to gain and maintain access to…

https://osintsights.com/china-linked-hackers-exploit-microsoft-exchange-in-azerbaijani-energy-firm-attac?utm_source=mastodon&utm_medium=social

#ChinalinkedHackers #MicrosoftExchange #Proxynotshell #Famoussparrow #EarthEstries

China-Linked Hackers Expose Wide-Ranging Espionage Campaign

Meet SHADOW-EARTH-053, a China-aligned espionage group that's been secretly lurking in the shadows since December 2024, using clever tactics like exploiting vulnerabilities and deploying web shells to gain persistent access to sensitive targets. Their sophisticated attacks have been linked to other notorious intrusion sets, revealing a…

https://osintsights.com/china-linked-hackers-expose-wide-ranging-espionage-campaign?utm_source=mastodon&utm_medium=social

#ChinalinkedHackers #EspionageCampaign #Proxylogon #Godzilla #Shadowpad

China-Linked Hackers Exploit Global Infrastructure in Covert Network Attacks

Be on high alert: China-linked hackers are secretly building global covert networks using compromised routers and devices, putting anyone who's a target at risk of devastating cyber attacks and data theft. This sinister plot, revealed by a joint advisory from 16 government agencies worldwide, has far-reaching…

https://osintsights.com/china-linked-hackers-exploit-global-infrastructure-in-covert-network-attacks?utm_source=mastodon&utm_medium=social

#ChinalinkedHackers #CovertNetworks #Botnets #NationState #EmergingThreats