Threat Actors Target Chinese Language News Sites

frogboy

In memoriam 1961-2018
Thread author
Verified
Top Poster
Well-known
Jun 9, 2013
6,720
A California-based news website covering China, called China Digital Times, was targeted in a spying campaign that involved phishing lures and the use of the NetWire remote access Trojan.

The attacks began in February 2017 and were part of a wider campaign of phishing, reconnaissance and malware operations that used domains and content made to mimic other Chinese-language news websites including China Digital Times, Epoch Times, Mingjing News, HK01 and Bowen Press.

According to an investigation by the Munk School of Global Affairs at the University of Toronto’s Citizen Lab, published Wednesday, the attacks were similar to previous malware campaigns targeting a Tibetan radio station and the Thai government.

One phishing attack targeting China Digital Times (CDT) included an email claiming to come from a University of California Berkeley student with a news tip. “I have insider information that is different from what you’ve published,” the email read and included a link. When clicked the link delivers an article from a spoofed version of the news site CDT.

Read more. Threat Actors Target Chinese Language News Sites
 
  • Like
Reactions: SumG

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top