Pictured: The Forbidden City, in Beijing. Experts say Chinese APT operations use a mix of proprietary and publicly available tools to spy on institutions around the world. (Frédéric Soltan/Corbis via Getty Images)
Chinese APT operations have an army of coders at their disposal, and an array of advanced malicious tools. But some of their most important hacking tools aren’t even their own proprietary code. Much like other state-sponsored threat groups, they also rely on publicly available or open-source software that they can abuse for their own nefarious purposes – going as far as to monitor hacking forums to see the latest developments in code.
Many of these tools can be used for innocent purposes, but in the wrong hands, a helpful pen testing program can easily become a hacking aid used to spy on businesses, governments and other targets of interest.
Mike McLellan, senior security researcher at Secureworks, talked to SC Media about the discovery and investigation of one recent Chinese attack campaign that revealed how nation-state actors will leverage any code at their disposal to achieve their goals. McLellan also addressed how monitoring adversaries as they hunt for new tools can preven ..
Support the originator by clicking the read the rest link below.
