Current:Home > InvestLeaked document trove shows a Chinese hacking scheme focused on harassing dissidents-LoTradeCoin
Leaked document trove shows a Chinese hacking scheme focused on harassing dissidents
View Date:2024-12-24 01:17:23
A large trove of more than 500 sensitive technical documents posted online anonymously last week details one Chinese technology company's hacking operations, target lists and marketing materials for the Chinese government.
The majority of the operations appear to be focused on surveilling and harassing dissidents who publicly criticize the Chinese government, including on global social media platforms like X, formerly known as Twitter.
Target lists reveal victims from at least 14 governments from Pakistan to Australia, as well as academic institutions, pro-democracy organizations in places like Hong Kong, as well as the military alliance NATO. The company was also bidding for work to surveil the minority Uyghur population in Xinxiang, a broader Chinese government program that major global human rights' organizations around the world have heavily criticized. There are even pictures of custom devices used for spying, such as a recording device disguised as a power bank.
Cybersecurity researchers are still investigating different components of the leak, which was shared to the open source development website popular with programmers, called GitHub. However, experts from top U.S. cybersecurity companies including Google's Mandiant and Sentinel Labs have shared preliminary analysis of the contents of the leak, believing the documents to be authentic.
"We have every reason to believe this is the authentic data of a contractor supporting global and domestic cyber espionage operations out of China," said John Hultquist, the chief analyst for Mandiant Intelligence, a part of Google Cloud. "This leak is narrow, but it is deep. We rarely get such unfettered access to the inner workings of any intelligence operation. We are working hard to learn as much as we can and put it to good use."
The state-affiliated company, called i-Soon, is known to be one of many contractors and subcontractors who compete for opportunities to perform hacking and surveillance operations for different Chinese government agencies. The company is currently facing litigation from another Chinese contractor called Chengdu 404, a company that the U.S. government has publicly linked in court documents to hacking operations for the state. It appears i-Soon may have done subcontracting work with Chengdu 404.
In previous public materials, i-Soon has noted relationships with China's Ministry of Public Security, Ministry of State Security, and People's Liberation Army, among others. The company is publicly known for providing cybersecurity trainings around the country from its base in Shanghai.
But beyond what's publicly known, the details in the leak give internal insights into how an increasingly competitive marketplace for hacking operations within China functions. It's unclear if all the claims made in marketing materials included in the leak are true, such as the ability to break into devices manufactured by top U.S. companies like Apple and Microsoft. However, it's clear that the company is heavily invested in automating the ability to constantly monitor platforms like X and Facebook. Those platforms, unlike the popular WeChat, are not controlled by the Chinese government, making them popular with dissidents.
There are also details in the leak concerning internal pay scales and other bureaucratic details of contracts with the Chinese government. There is a note, or "ReadMe" document, included on the GitHub page where the leak is hosted, where the purported source of the leak claims to be dissatisfied with the company's policies. That could indicate the source being a disgruntled employee, though it's also possible the leak is the result of an intelligence operation or the work of a competitor.
While the contents of the leak are not entirely surprising, they're especially helpful to specialists and researchers, who continue to review the contents. In particular, individual documents can help researchers fact-check their assumptions about who was responsible for previously discovered breaches.
veryGood! (5)
Related
- Jack Del Rio leaving Wisconsin’s staff after arrest on charge of operating vehicle while intoxicated
- SWA Token Fuels an Educational Ecosystem, Pioneering a New Era of Smart Education
- Sofia Richie Proves Baby Girl Eloise Is a Love Bug in New Photos With Elliot Grainge
- Emirates NBA Cup explained: Format, schedule, groups for 2024 NBA in-season tournament
- Stocks soared on news of Trump's election. Bonds sank. Here's why.
- Jeopardy! Contestant Speaks Out on Sexist Clue After Ken Jennings' Apology
- A green giant: This year’s 74-foot Rockefeller Christmas tree is en route from Massachusetts
- Hollywood’s Favorite Leg-Elongating Jeans Made Me Ditch My Wide-Legs Forever—Starting at Only $16
- Karol G addresses backlash to '+57' lyric: 'I still have a lot to learn'
- Republican David McCormick flips pivotal Pennsylvania Senate seat, ousts Bob Casey
Ranking
- She's a trans actress and 'a warrior.' Now, this 'Emilia Pérez' star could make history.
- Sofia Richie Proves Baby Girl Eloise Is a Love Bug in New Photos With Elliot Grainge
- Florida awards Billy Napier a flimsy vote of confidence, as Gators crumble under his watch
- West Virginia Gov. Jim Justice appoints wife Cathy to state education board after U.S. Senate win
- Homes of Chiefs’ quarterback Mahomes and tight end Kelce were broken into last month
- Horoscopes Today, November 6, 2024
- 43 monkeys escape from a South Carolina medical lab. Police say there is no serious danger
- Winner of Maine’s 2nd Congressional District seat still undetermined in close race
Recommendation
-
How to Build Your Target Fall Capsule Wardrobe: Budget-Friendly Must-Haves for Effortless Style
-
12 Holiday Gift Ideas for Your Bestie Ahead of Christmas & Hanukkah 2024
-
Damon Quisenberry: Pioneering a New Era in Financial Education
-
Starbucks holiday menu 2024 returns with new refreshers, food items: See the full menu
-
LSU student arrested over threats to governor who wanted a tiger at college football games
-
Michigan man sentenced to 30 years in prison for role in online child exploitation ring
-
Bribery charges brought against Mississippi mayor, prosecutor and council member
-
Michigan man sentenced to 30 years in prison for role in online child exploitation ring