Chinese Hackers Go After Norwegian Businesses

Uploaded on 2019-02-18 in INTELLIGENCE-Hot Spots-China, FREE TO VIEW, INTELLIGENCE--International, TECHNOLOGY--Hackers

Chinese hackers have been accused of stealing private and intellectual data stole from, a large Norwegian provider of IT services and a number of other businesses between November 2017 and September 2018. 

The new  Report  by Rapid7 and Recorded Future say that a Chinese government sponsored hacking group, called APT10, has stolen information and data from Visma the Norwegian business that offers cloud software security for companies.

This hack was not just on Visma as an American law firm was also hacked along with a total of at least nine businesses and the US government in December 2018 has now charged two Chinese with being part of these attacks.
The Visma attack took place on the 17th August 2018 and the hackers used stolen IDs, that Visma used as it’s security information for access to their internal network. 

Visma have said in a statement, “Recorded Future has released a report on the investigation of a cyberespionage campaign conducted by a state-sponsored threat actor towards US and European companies last year.

The report commends Visma's security work and transparency in the aftermath of the investigation and highlights the importance of industry collaboration in preventing cybercrime.

“The report is a summary of an investigation of a sustained cyberespionage campaign conducted by Chinese state-sponsored threat actor, APT10, targeting at least three companies in the United States and Europe uncovered by Recorded Future and Rapid7 between November 2017 and September 2018.”

The Five Eyes (US, Canada, UK, Australia and New Zealand) and Japan, have accused China of the hacking attacks.

News By CSI 

You Might Also Read: 

Massive Breach: 3m Healthcare Records Compromised:

Why Is China Hacking Norway?:

 

 

« British Government Funds Academic Research In Cybersecurity
Cyberwar Vs. Traditional Conflict »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Security Industry Association (SIA)

Security Industry Association (SIA)

The SIA's mission is to be a catalyst for success​ within the global security industry through information, insight and influence.

Oodrive

Oodrive

Oodrive is the first trusted European collaborative suite allowing users to collaborate, communicate and streamline business with transparent tools that ensure security.

ACI Worldwide

ACI Worldwide

ACI Worldwide powers electronic payments for more than 5,000 organizations around the world.

IAC

IAC

IAC is a specialist Irecruitment consultancy covering Internal Audit, Risk, Controls, Governance, IT Audit, and Cyber Security roles.

FTAPI Software

FTAPI Software

FTAPI SecuTransfer is a software solution for end-to-end encrypted data exchange of large and sensitive data with customers and partners.

IT Career Switch

IT Career Switch

An IT Career Switch Traineeship is the easiest way to start a new career in IT or Cybersecurity with fantastic career prospects.

CloudVector

CloudVector

CloudVector's API Detection & Response platform is the only API Threat Protection solution that goes beyond the gateway to provide Shadow API Prevention and Deep API Risk Monitoring and Remediation.

Fortress Information Security

Fortress Information Security

Fortress Information Security is one of the largest cyber security providers of supply chain risk management and vulnerability risk management in the US.

NJVC

NJVC

NJVC delivers IT automation, optimization and security to empower mission-enabling IT for customers with secure requirements.

Vumetric Cybersecurity

Vumetric Cybersecurity

Vumetric is an ISO9001 certified company offering penetration testing, IT security audits and specialized cybersecurity services.

Etonwood

Etonwood

Etonwood specialises in infrastructure and vendor technology recruitment in areas including cloud platforms, cyber security and service management.

East Midlands Cyber Resilience Centre (EMCRC)

East Midlands Cyber Resilience Centre (EMCRC)

The East Midlands Cyber Resilience Centre is set up to support and help protect businesses across the region against cyber crime.

Anjuna Security

Anjuna Security

Software from Anjuna Security effortlessly enables enterprises to safely run even their most sensitive workloads in the public cloud.

Invisily

Invisily

Invisily makes enterprise and cloud computing resources invisible to attackers with zero trust solutions, making them visible only when needed to only those who need them.

Amtivo Group

Amtivo Group

Amtivo provides Certification, Inspection and Training services to national and local Government bodies, multi-nationals, enterprise clients and SMEs.

Liquid C2

Liquid C2

Liquid C2 offers leading solutions to streamline workplace operations, secure cloud storage, rapid data recovery, and scale growth.