Cybersecurity Firm Warns of New Cyber Espionage Tactic by Chinese Hackers

5Mind. The Meme Platform
The Epoch Times Header

Chinese state-backed hackers took advantage of outdated hardware and software to access routers and take over computer networks.

A Chinese hacker group is targeting routers made by a major U.S. manufacturer, taking advantage of outdated software and hardware to hijack routers and access computer networks, a cybersecurity firm warned Wednesday.

It’s a new tactic in an increasingly sophisticated cybercrime landscape, according to the firm.

Mandiant, a Google subsidiary known for outing Chinese hackers, reported in a blog post March 12 that the state-backed hacker group UNC3886 targeted routers made by Juniper Networks.

The Silicon Valley-based tech company is a main competitor to Cisco, the leader in the U.S. router market. While many Juniper products are manufactured in China and other parts of Southeast Asia, most of its higher-end products are assembled in North America.

In mid-2024, Mandiant found that attackers had deployed a program that accessed victims’ computers by disabling login mechanisms.

Once in the system, the program could carry out active backdoor functions, which directly interfered with the system, or passive backdoor functions—“eavesdropping” or gathering information.

Mandiant noted that the back doors were based on an open-source, low-maintenance program named TINYSHELL.

According to Mandiant, the vulnerability that enabled the intrusions was the use of routers running outdated or “end-of-life” hardware and software.

A New Tactic

Mandiant noted that in 2022 and 2023, it reported that hacker group UNC3886 had breached server software such as VMware ESXi, Linux vCenter servers, and Windows virtual machines.

Wednesday’s blog post described “a development in UNC3886’s tactics, techniques and procedures,” and a focus on devices that may lack security monitoring and detection solutions.

Compromising routing devices is a new espionage tactic, the report said, “as it grants the capability for a long-term, high-level access to the crucial routing infrastructure, with a potential for more disruptive actions in the future.”

Mandiant described UNC3886 as “highly adept.” The hacker group’s modus operandi is to acquire “legitimate credentials” and use them to operate undetected.

Historically, the group has targeted network devices and virtualization technologies with “zero-day exploits,” cyber attacks that take advantage of previously unknown vulnerabilities in software, hardware, or firmware before vendors have a chance to patch them.

By Dave Malyon

Read Full Article on TheEpochTimes.com

Contact Your Elected Officials
The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.
00:02:31

Is Charlie Kirk’s Assassination Looking More Like a Conspiracy?

Enough videos have been posted to the internet, plenty...

Is There a 9/11 WTC and 9/10 Charlie Kirk Connection?

Strange parallels in online stories raise questions about whether Israelis and Mossad intelligence are our allies or adversaries.
00:27:01

Charlie Kirk Assassination Links Back to Israel

Google searches were conducted as early as July, on key elements in the September assassination of Charlie Kirk and the search information is being revealed.
00:03:53

Charlie Kirk Assassin Spotted Before Shooting!

Charlie Kirk incident mirrors Trump attempt: shooter spotted on rooftop beforehand, echoing July attack’s circumstances.

Private Citizens Work to Solve the Kirk Assassination

Americans unite after the assassination of Charlie Kirk, scouring online videos for anomalies surrounding the shocking event.
01:16:58

DOJ Launches Huge Campaign Against Birth Tourism

The Department of Justice is now launching a full-scale campaign to go after criminals involved in birth tourism.

Unemployment Falls to 4.2 Percent as US Economy Adds 57,000 New Jobs

Employers added 57,000 new jobs last month, from May’s 129,000 gain, according to new data from the Bureau of Labor Statistics released on July 2.
00:00:41

Treasury Launches Low-Cost Index Funds for Trump Accounts to Boost Children’s Future Savings

The U.S. Department of the Treasury unveiled a default investment in S&P 500 ETF for Trump Accounts ahead of its Independence Day launch.
00:00:55

Micron Technology to Invest $250 Million in Trump Accounts

Chip manufacturer Micron Technology is committing $250 million to Trump Accounts, the company said on July 1.

Trump Shares New US Passport Design on Truth Social

The mockup shows limited-edition passports planned for a July...
00:05:14

Trump Cancels Signing of Housing Affordability Bill, Says SAVE Act Should Be Passed First

Trump canceled signing of a bipartisan housing bill aimed at lowering home prices, saying an election integrity bill should be passed by Congress first.
00:39:13

Trump Signs Orders to Boost Development in Quantum Computing

President Trump signed two executive orders to accelerate quantum computing development and strengthen U.S. leadership in this emerging technology sector.

Banning Hospitals’ Certain Contracts Could Save Americans $45 Billion, Report Finds

A ban on certain contracts between hospital systems and health insurers could save Americans around $45 billion, according to a report.
spot_img

Related Articles

Popular Categories

MAGA Business Central