Chinese State-Sponsored Actor Targets Foreign Affairs Ministries in the Americas

New Backdoor Codenamed Graphican Used in Recent Cyber Attacks

Broadcom’s Symantec has reported that a Chinese state-sponsored hacker group named Flea has recently launched cyber attacks on foreign affairs ministries in the Americas. The campaign began in late 2022 and continued into early 2023.

According to the report, Symantec researchers discovered a new backdoor codenamed Graphican used in the attacks. This backdoor allows the hacker group to gain full access to the targeted systems, enabling them to steal sensitive data and monitor the compromised network.

Other Targets of the Cyber Attacks

Aside from foreign affairs ministries, the Chinese state-sponsored hacker group also targeted other organizations in the Americas. One of the targets was a government finance department, while another was a corporation that markets products in the region.

Summary

A Chinese state-sponsored hacker group named Flea has recently launched cyber attacks on various foreign affairs ministries in the Americas, as well as other organizations in the region. The attacks, which occurred from late 2022 to early 2023, utilized a new backdoor codenamed Graphican, which gave Flea full access to the targeted systems. The motive behind the attacks and the extent of the damage caused by the hacker group remain unknown at this time.

Original Article: https://thehackernews.com/2023/06/chinese-hacker-group-flea-targets.html