A tax software program installed by business clients of an unidentified Chinese bank was trojanized with malware that installs a backdoor granting attackers SYSTEM-level privileges, researchers warn.
In a company blog post and more detailed threat report, Trustwave and its SpiderLabs team identified the accounting softwa
re as Intelligent Tax, which was reportedly developed by the Golden Tax Department of IT and information security company Aisino Corporation, and digitally signed by a second company, Chenkuo Network Technology.
It is unknown if the bank (which Trustwave left unnamed), Aisino, Chenkuo Network Technology, or another party such as the Chinese government was actively behind the scheme. Trustwave says it caught the threat too early in the kill chain to make such attributions — although it does note that the campaign bears certain traits of a coordinated Advanced Persistent Threat operation.
Because it is unknown how large the scope of the attack goes and what players are involved, “every corporation operating in Chin ..
Support the originator by clicking the read the rest link below.
