https://www.reuters.com/investigates/special-report/china-cyber-cloudhopper/
By Jack Stubbs, Joesph Menn and Christopher Bing
Reuters
June 26, 2019
LONDON – Hacked by suspected Chinese cyber spies five times from 2014 to
2017, security staff at Swedish telecoms equipment giant Ericsson had
taken to naming their response efforts after different types of wine.
Pinot Noir began in September 2016. After successfully repelling a wave of
attacks a year earlier, Ericsson discovered the intruders were back. And
this time, the company’s cybersecurity team could see exactly how they got
in: through a connection to information-technology services supplier
Hewlett Packard Enterprise.
Teams of hackers connected to the Chinese Ministry of State Security had
penetrated HPE’s cloud computing service and used it as a launchpad to
attack customers, plundering reams of corporate and government secrets for
years in what U.S. prosecutors say was an effort to boost Chinese economic
interests.
The hacking campaign, known as “Cloud Hopper,” was the subject of a U.S.
indictment in December that accused two Chinese nationals of identity
theft and fraud. Prosecutors described an elaborate operation that
victimized multiple Western companies but stopped short of naming them. A
Reuters report at the time identified two: Hewlett Packard Enterprise and
IBM.
Yet the campaign ensnared at least six more major technology firms,
touching five of the world’s 10 biggest tech service providers.
[...]
--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
