September 18, 2024 at 10:54AM Chinese national Song Wu, employed by AVIC, was indicted in the U.S. for spear-phishing to access NASA, universities, and private companies’ software. The stolen data could be utilized in aerospace and military applications. Another Chinese national, Jia Wei, was separately charged for infiltrating a U.S. communications firm. In the UK, … Read more
August 1, 2024 at 02:04AM Germany has accused China-controlled actors of perpetrating a cyber attack on the Federal Office of Cartography and Geodesy in 2021. Minister Nancy Faeser strongly condemned the attack, warning of China’s ongoing cyber offensive. Meanwhile, the US considers further sanctions on tech exports to China, particularly related to high-bandwidth memory, citing … Read more
March 26, 2024 at 01:33PM Threat hunters have flagged the suspicious “SqzrFramework480” package in NuGet, possibly linked to Chinese firm Bozhon Precision. The package contains a DLL file with features for taking screenshots, pinging a remote IP, and transmitting screenshots over a socket. While motives remain unclear, it highlights the risk of concealed malicious code … Read more
March 26, 2024 at 11:00AM A suspicious NuGet package, “SqzrFramework480,” has been reported for potential industrial data harvesting. The .NET library offers legitimate robotic movement and GUI capabilities but can also capture information from industrial systems, take screenshots, and transfer data. The package is potentially linked to Chinese company Bozhon, raising concerns about industrial espionage. … Read more