Government

Phishing Campaign Targets Chinese Government and State Enterprises

6 - 13 August 2019

An extensive phishing campaign dubbed Bitter APT is targeting employees at China’s government agencies

An extensive phishing campaign dubbed Bitter APT is targeting employees at China’s government agencies and state-owned enterprises to steal their email credentials. The phishing attacks are propagated via URL shorteners which redirect victims to six malicious domains hosting some 40 spoofed email login pages. All the spoofed pages contain a verification or account validation theme and use Domain Validation certificates issued by “Let’s Encrypt”. Most of the targeted organisations are related to economic trade, defence, aviation and foreign relations, suggesting that the threat actors are pursuing some form of espionage to gain an understanding of China’s motivation and policy directions in these areas.

 

References:

Suspected BITTER APT Continues Targeting Government of China and Chinese Organizations

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Systems Integration

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence