Foreign state-sponsored hackers have launched a massive hacking operation aimed at Chinese government agencies and their employees. Attacks began last month, in March, and are believed to be related to the current coronavirus (COVID-19) outbreak. Chinese security-firm Qihoo 360, which detected the intrusions, said the hackers used a zero-day vulnerability in Sangfor SSL VPN servers, used to provide remote access to enterprise and government networks. Qihoo said it discovered more than 200 VPN servers that have been hacked in this campaign.
VPN zero-day used by DarkHotel hackers https://t.co/1MfbAaZXDK pic.twitter.com/3wJAOOW1oo
— Jim Rigney (@RigneySec) April 6, 2020
About the Author
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.
