Thought Leadership
Security authorities are warning that Chinese hackers are using infiltrated devices to spy on political figures and companies in a targeted manner. The threat also extends to private IT equipment and smart devices.
Security agencies at home and abroad are sounding the alarm over state-sponsored Chinese hackers who are believed to have built a network of infiltrated devices for the discreet surveillance of targeted individuals and companies. In a security advisory published by the British National Cyber Security Centre (NCSC) in cooperation with Germany’s domestic intelligence agency (Verfassungsschutz), the Federal Intelligence Service (BND), the Federal Office for Information Security (BSI), and other international partners, the statement reads: “State-sponsored Chinese cyber actors have continuously adapted their tactics and techniques over the past few years.”
Small Devices Compromised
According to the advisory, various Chinese cyberattacks have made use of a custom-built infrastructure composed largely of compromised endpoint devices, along with large-scale obfuscation networks. Compromised endpoint devices in Germany are reportedly also being used for such campaigns. This particularly affects IT infrastructure in homes and small offices, including so-called smart devices and Internet of Things (IoT) devices. Connected cars, for example, also fall into the IoT category.
Reports suggest that the network of compromised devices has been used to spy on targeted individuals in the political sphere. Sensitive corporate data is reportedly also a focus of these operations.
In its advisory, the NCSC recommends a range of protective measures, including multi factor authentication for remote connections.
dpa
