Category Archives: Cambodia

ESET: Vietnamese hacking group hijacks Southeast Asian sites in watering hole campaign

Posted on by

A prominent Vietnam-linked hacking group is exploiting a number of Southeast Asian organizations’ websites to deliver malware that extracts detailed information about victims’ systems, researchers say. According to a report released Tuesday by Slovakian cybersecurity company ESET, the threat group APT32, also known as OceanLotus Group, has been conducting watering hole attacks using at least 21 vulnerable websites belonging to government, media and other organizations as far back as September. APT32 is believed to be based in Vietnam and possibly linked to its government. Past research has shown APT32 to be a highly capable threat group that targets a wide variety of public and private organizations with customized tools for each target. Similarly, this campaign shows APT32 using a unique domain and server for each website it’s using as a watering hole, and the group only sends additional payloads to specific victims, according to ESET. ESET said it notified 21 website […]

The post ESET: Vietnamese hacking group hijacks Southeast Asian sites in watering hole campaign appeared first on Cyberscoop.

Continue reading ESET: Vietnamese hacking group hijacks Southeast Asian sites in watering hole campaign

Chinese hackers breach Cambodian government ahead of country’s general election

Posted on by

In the run up to Cambodia’s general election on July 29, a hacking group tied to China has been breaking into multiple organizations that share a connection to either the country’s main opposition party, voting process or human rights movement, according to new research and additional analysis provided by U.S. cybersecurity firm FireEye. The findings — made possible through a glaring operational security mistake where hackers left their attack servers exposed on the open internet — help illustrate how governments are leaning on cyber-espionage capabilities to learn about foreign elections. FireEye collected this intelligence by directly accessing the attack servers, which weren’t protected with a password. The firm was able to identify breaches through established lines of communication that existed between the servers and victims. The hacking group in question, known as “TEMP.Periscope,” has been tied multiple times to Chinese-linked cyber operations that used a suite of unique tools to […]

The post Chinese hackers breach Cambodian government ahead of country’s general election appeared first on Cyberscoop.

Continue reading Chinese hackers breach Cambodian government ahead of country’s general election