Industry News  Chinese Hackers Steal Cloud Service Session Cookies with CloudScout Toolset
Industry News

Chinese Hackers Steal Cloud Service Session Cookies with CloudScout Toolset

SecuredyouadmSecuredyouadmOctober 28, 20240
PinterestLinkedInTumblrRedditVKWhatsApp
More stories

Chinese Cyber Attack on U.S. Telecoms Unveiled

In a shocking revelation, it has been discovered that Chinese hackers have targeted T-Mobile and other U.S. telecom companies as part of a larger espionage campaign. The hackers were able to exploit vulnerabilities in the systems, gaining access to sensitive information and potentially compromising national security.

The attack highlights the growing threat of cyber warfare and the need for increased vigilance in protecting critical infrastructure. With the rise of technology and interconnected systems, the potential for these types of attacks to disrupt essential services and steal valuable data is a major concern.

The U.S. government has been quick to condemn the actions of the Chinese hackers, calling for immediate action to strengthen cybersecurity measures. This incident serves as a wake-up call for telecom companies and government agencies to reassess their security protocols and fortify defenses against future attacks.

As the investigation into the breach continues, it is crucial for all parties involved to work together to identify the extent of the damage and take steps to prevent similar attacks in the future. The repercussions of such a breach could be far-reaching, impacting not only the affected companies but also the security of the entire nation.

In the face of this cyber threat, it is imperative that organizations remain vigilant and proactive in safeguarding their networks and data. By staying ahead of the curve and implementing robust cybersecurity measures, we can better protect against potential attacks and ensure the integrity of our critical infrastructure.

November 19, 2024



In a recent cyber attack, a government entity and a religious organization in Taiwan fell victim to a China-linked threat actor known as Evasive Panda. This threat actor utilized a new post-compromise toolset called CloudScout to steal data from various cloud services by exploiting stolen web session cookies. The toolset seamlessly integrates with MgBot, which is Evasive Panda’s signature malware framework.

The .NET-based CloudScout toolset was active between May 2022 and February 2023, featuring 10 different modules written in C#. Three of these modules were designed to steal data from Google Drive, Gmail, and Outlook, while the purpose of the remaining modules remains undisclosed. Evasive Panda, also known as Bronze Highland, Daggerfly, and StormBamboo, is a cyber espionage group with a history of targeting entities in Taiwan, Hong Kong, and the Tibetan diaspora.

ESET researchers revealed that CloudScout modules are programmed to hijack authenticated sessions in web browsers by stealing cookies and gaining unauthorized access to cloud services. The stolen information, including email messages and files with specific extensions, is compressed into a ZIP archive for exfiltration by MgBot or Nightdoor. However, new security measures implemented by Google, such as Device Bound Session Credentials and App-Bound Encryption, are expected to make cookie-theft malware obsolete.

The development of CloudScout by Evasive Panda highlights the ongoing threat posed by state-sponsored cyber actors. In a separate incident, the Government of Canada accused a sophisticated state-sponsored threat actor from China of conducting reconnaissance efforts against various Canadian domains, including government departments, political parties, critical infrastructure, and media organizations. It is essential for organizations to stay vigilant and implement robust cybersecurity measures to defend against such sophisticated attacks.



Source link

PinterestLinkedInTumblrRedditVKWhatsApp

Securedyouadm

Federal Cyber Panel Launches Investigation into Chinese Telecoms Hacking

Russian-Linked Malware Targets Ukrainian Military Recruits
Related posts
Industry News

The importance of staying active and maintaining a healthy lifestyle cannot be understated. Regular exercise not only helps to keep our bodies in shape, but also has a multitude of benefits for our mental and emotional wellbeing. It is recommended that adults engage in at least 150 minutes of moderate intensity exercise per week to reap the full rewards of physical activity.

Exercise has been shown to improve cardiovascular health, increase muscle strength and flexibility, and boost overall energy levels. Regular physical activity can also help to prevent chronic diseases such as heart disease, diabetes, and obesity. In addition, engaging in exercise releases endorphins, which are known as the “feel good” hormones, helping to reduce stress and improve mood.

Incorporating various types of exercise into your routine can help to keep things interesting and prevent boredom. Activities such as running, biking, swimming, yoga, and weightlifting all offer different benefits and can target different muscle groups. Mixing up your workouts can also prevent plateaus and help to continuously challenge your body.

It is important to listen to your body and not push yourself too hard, especially if you are just starting an exercise regimen. Gradually increasing the intensity and duration of your workouts can help to prevent injury and ensure long-term success. Finding a form of exercise that you enjoy and can stick with is key to maintaining a healthy lifestyle.

In conclusion, making time for regular physical activity is essential for overall health and wellbeing. Whether it’s a brisk walk in the park, a high-intensity interval training session, or a relaxing yoga class, finding ways to stay active can greatly improve your quality of life. So lace up those sneakers, grab a workout buddy, and start reaping the benefits of a healthy, active lifestyle today.

May 22, 20250
Load more
Leave a Reply

Your email address will not be published. Required fields are marked *

Read also
Load more