Budapest Post

Cum Deo pro Patria et Libertate
Budapest, Europe and world news

Hackers target Chinese government agencies, diplomatic missions and WHO amid pandemic

Hackers target Chinese government agencies, diplomatic missions and WHO amid pandemic

More than 200 VPN servers have been compromised in a massive campaign by hackers, according to a report by leading Chinese internet provider Qihoo 360. The report attributed the attacks to advanced hacker group DarkHotel

Chinese agencies and diplomatic missions have been targeted by hackers through their virtual private network (VPN) servers in a coordinated cyber espionage campaign, at a time when many governments and global organisations are more vulnerable than ever to security breaches due to remote working arrangements amid the pandemic, according to a report by a leading Chinese cybersecurity provider.

Both domestic Chinese agencies and diplomatic missions in countries including Italy, the UK, North Korea and Thailand have been attacked, according to a report by Qihoo 360. It speculated in the report that the East Asia-based DarkHotel hacking group attacked Chinese agencies for reasons linked to the pandemic.

The group is also suspected to be behind recent cyberattacks against the World Health Organisation (WHO), as officials and cybersecurity experts warn that hackers of all stripes are seeking to capitalise on international concern over the spread of the coronavirus, according to a Reuters report.

“Since March this year, more than 200 VPN servers have been compromised and many Chinese institutions abroad were under attack. In early April, the attack spread to government agencies in Beijing and Shanghai,” said the report by Qihoo 360, China’s largest antivirus vendor.

The WHO did not immediately respond to a request for comment.

“The Chinese government has been resolutely cracking down on any form of cyber attacks and will step up measures to protect its cyber security,” said Zhao Lijian, a spokesman for China's Ministry of Foreign Affairs. He also called for more international cooperation to protect cyber security.

The attacks come at a time when many governments and corporations are asking employees to work from home to prevent the spread of the novel coronavirus. Beijing has asked most offices to host no more than half of employees at one time, and suspended classes in schools.

“Especially in this global battle against the coronavirus pandemic, VPN plays an indispensable and important role in the remote telecommunication of enterprises and government agencies,” Qihoo 360 said in its post. “Once VPNs are controlled by threat actors, the internal assets of many enterprises and institutions will be exposed to the public network, and the loss will be immeasurable.”

DarkHotel, which Qihoo 360 said initiated the attacks, is a group of elite hackers which has been conducting cyber-espionage operations since at least 2007. Cybersecurity firms have traced many of DarkHotel’s operations to East Asia, with targets including government employees and business executives in places such as China, North Korea, Japan and the United States.

Qihoo 360 speculated in the report that the group could have attacked Chinese agencies to gain information related to the pandemic.



“After [the] Chinese government took strict measures to fight the virus, now the outbreak has been controlled in China. But the pandemic is still going on in a lot of countries,” Qihoo 360 wrote in the post. “[Are the attacks] intended to spy upon China's medical technology and virus-control measures during the epidemic?”

However, security experts said that aside from Qihoo 360's report, at the present time there is no other evidence that DarkHotel was behind the attacks or that the hackers' motivations were related to the pandemic.

“[So far] we don’t see any third party confirmation yet. Those should come within the next few days,” said Mark Webb-Johnson, co-founder and chief technology officer of security service provider Network Box. “For the moment, this is one company’s opinion. That said, I don't see any evidence to dispute its credibility.”

“This write-up is full of speculation, no evidence this was actually DarkHotel, and a ton of confirmation bias about targeting because of Covid,” tweeted Brian Bartholomew, a researcher from Kaspersky, which tracks DarkHotel, after the release of the Qihoo 360 report. “Not saying they’re wrong, but in the future, there needs to be more supporting data to support claims.”

In the latest series of attacks against Chinese institutions, hackers hijacked the servers of domestic VPN vendor SangFor Technologies by replacing a file in the VPN programme’s security update with one that gave them a backdoor to users’ devices, according to Qihoo 360.

Users were prompted to update their VPN clients upon logging in, unknowingly downloading the file and giving hackers access to their devices.

In a post on Tuesday, Shenzhen-based SangFor posted solutions including security patches and free antivirus software.

“We truly apologise for security loopholes uncovered,” SangFor said in the post. “The company has launched an all-round review of existing products and will run stricter verification tests.”

SangFor did not immediately respond to a request for comment.

AI Disclaimer: An advanced artificial intelligence (AI) system generated the content of this page on its own. This innovative technology conducts extensive research from a variety of reliable sources, performs rigorous fact-checking and verification, cleans up and balances biased or manipulated content, and presents a minimal factual summary that is just enough yet essential for you to function as an informed and educated citizen. Please keep in mind, however, that this system is an evolving technology, and as a result, the article may contain accidental inaccuracies or errors. We urge you to help us improve our site by reporting any inaccuracies you find using the "Contact Us" link at the bottom of this page. Your helpful feedback helps us improve our system and deliver more precise content. When you find an article of interest here, please look for the full and extensive coverage of this topic in traditional news sources, as they are written by professional journalists that we try to support, not replace. We appreciate your understanding and assistance.
Newsletter

Related Articles

0:00
0:00
Close
IMF Upgrades Global Growth Forecast as Weaker Dollar Supports Outlook
House Republicans Move to Defund OECD Over Global Tax Dispute
France Opens Criminal Investigation into X Over Algorithm Manipulation Allegations
Trump Steamrolls EU in Landmark Trade Win: US–EU Trade Deal Imposes 15% Tariff on European Imports
ChatGPT CEO Sam Altman says people share personal info with ChatGPT but don’t know chats can be used as court evidence in legal cases.
Intel Reports Revenue Beats but Sees 81% Rise in Losses
Politics is a good business: Barack Obama’s Reported Net Worth Growth, 1990–2025
UN's Top Court Declares Environmental Protection a Legal Obligation Under International Law
"Crazy Thing": OpenAI's Sam Altman Warns Of AI Voice Fraud Crisis In Banking
The Podcaster Who Accidentally Revealed He Earns Over $10 Million a Year
UK Government Considers Dropping Demand for Apple Encryption Backdoor
Japanese Man Discovers Family Connection Through DNA Testing After Decades of Separation
Russia Signals Openness to Ukraine Peace Talks Amid Escalating Drone Warfare
Switzerland Implements Ban on Mammography Screening
Pogacar Extends Dominance with Stage Fifteen Triumph at Tour de France
President Trump Diagnosed with Chronic Venous Insufficiency After Leg Swelling
CEO Resigns Amid Controversy Over Relationship with HR Executive
NVIDIA Achieves $4 Trillion Valuation Amid AI Demand
Tulsi Gabbard Unveils Evidence Alleging Political Manipulation of Intelligence During Trump Administration
Centrist Criticism of von der Leyen Resurfaces as she Survives EU Confidence Vote
Trump Announces Coca-Cola to Shift to Cane Sugar in U.S. Production
FIFA Pressured to Rethink World Cup Calendar Due to Climate Change
Zelensky Reshuffles Cabinet to Win Support at Home and in Washington
"Can You Hit Moscow?" Trump Asked Zelensky To Make Putin "Feel The Pain"
Church of England Removes 1991 Sexuality Guidelines from Clergy Selection
Superman Franchise Achieves Success with Latest Release
Hungary's Viktor Orban Rejects Agreements on Illegal Migration
Air India Pilot’s Mental Health Records Under Scrutiny
Jamie Dimon Warns Europe Is Losing Global Competitiveness and Flags Market Complacency
Moonshot AI Unveils Kimi K2: A New Open-Source AI Model
Martha Wells Says Humanity Still Far from True Artificial Intelligence
Nvidia Becomes World’s First Four‑Trillion‑Dollar Company Amid AI Boom
EU Delays Retaliatory Tariffs Amid New U.S. Threats on Imports
Trump Proposes Supplying Arms to Ukraine Through NATO Allies
US Opens First Rare Earth Mine in Over 70 Years in Wyoming
Bitcoin Reaches New Milestone of $116,000
Severe Heatwave Claims 2,300 Lives Across Europe
Declining Beer Consumption Signals Cultural Shift in Germany
Emails Leaked: How Passenger Luggage Became a Side Income for Airport Workers
Polish MEP: “Dear Leftists - China is laughing at you, Russia is laughing, India is laughing”
Western Europe Records Hottest June on Record
BRICS Expands Membership with Indonesia and Ten New Partner Countries
Elon Musk Founds a Party Following a Poll on X: "You Wanted It – You Got It!"
China’s Central Bank Consults European Peers on Low-Rate Strategies
France Requests Airlines to Cut Flights at Paris Airports Amid Planned Air Traffic Controller Strike
Poland Implements Border Checks Amid Growing Migration Tensions
Emirates Airline Expands Market Share with New $20 Million Campaign
Amazon Reaches Milestone with Deployment of One Millionth Robot
Yulia Putintseva Calls for Spectator Ejection at Wimbledon Over Safety Concerns
House Oversight Committee Subpoenas Former Jill Biden Aide Amid Investigation into Alleged Concealment of President Biden's Cognitive Health
×