Chinese hackers breach #REDCap servers, steal #medical research

https://www.bleepingcomputer.com/news/security/chinese-hackers-breach-redcap-servers-steal-medical-research/

#healthcare #cybersecurity #China

A new report reveals how Chinese state-sponsored hackers, UNC6508, maintained deep access to North American medical research institutions for over a year, stealing critical data. Their most insidious tactic? Abusing a legitimate cloud "Patriot" rule to automatically exfiltrate intelligence via email, blending seamlessly with normal traffic and bypassing standard security.

https://www.tpp.blog/1q7todf

#cybersecurity #unc6508 #redcap

🤖 This post was AI-generated.

Chinese Hackers Exploit Google Workspace to Siphon Research and Defense Emails

Chinese hackers have been secretly siphoning off sensitive emails from research and defense organizations using a clever exploit of Google Workspace, with a long-running campaign that spanned over two years. The threat actors, tracked as UNC6508, used custom malware called INFINITERED to breach externally facing servers and steal…

https://osintsights.com/chinese-hackers-exploit-google-workspace-to-siphon-research-and-defense-emails?utm_source=mastodon&utm_medium=social

#China #GoogleWorkspace #Unc6508 #Infinitered #Redcap

China-linked UNC6508 Targets Medical Research Institutions

A sophisticated cyber threat group linked to China, known as UNC6508, has launched a targeted attack on medical research institutions in North America, exploiting vulnerabilities in REDCap servers to gain a foothold. The intrusions, which began in September 2023, aim to compromise sensitive research data.

https://osintsights.com/china-linked-unc6508-targets-medical-research-institutions?utm_source=mastodon&utm_medium=social

#ChinalinkedUnc6508 #MedicalResearch #Redcap #Infinitered #NationState