2 months ago

U.S. Charges Three Chinese Hackers for Hacking Siemens, Trimble & Moody

The United States Justice Department has charged three Chinese nationals for allegedly hacking Moody’s Analytics economist, German electronics some sort of Siemens, along with also GPS maker Trimble, along with also stealing gigabytes of sensitive data along with also trade secrets.

According to an indictment unsealed Monday in federal court in Pittsburgh, Pennsylvania, the three men worked for a Chinese cybersecurity company, Guangzhou Bo Yu Information Technology Company Limited (Boyusec), previously linked to China’s Ministry of State Security.

Earlier This specific year, security researchers also linked Boyusec to one of the active Chinese government-sponsored espionage groups, called Advanced Persistent Threat 3 (or APT3), which is actually also known as Gothic Panda, UPS Team, Buckeye, along with also TG-0110.

In 2013, APT3 allegedly stole the blueprints for ASIO’s fresh Canberra building using a piece of malware in which was uploaded to an ASIO employee’s laptop.

According to the indictment, the three Chinese nationals—identified as Wu Yingzhuo, Dong Hao, along with also Xia Lei—launched “coordinated along with also unauthorized” cyber attacks between 2011 along with also 2017, along with also successfully steal information by many organizations by compromising their accounts.

The trio of hackers has alleged to have attacked Moody’s Analytics, Siemens, along with also Trimble by sending spear-phishing emails with malicious attachments or links to malware.

The men also used customized tools collectively known as the ‘ups’ or ‘exeproxy’ malware to gain unauthorized, persistent access to the targeted companies’ networks, allowing them to search for along with also steal confidential business information along with also user credentials.

“The primary goal of the co-conspirators’ unauthorized access to victim computers was to search for, identify, copy, package, along with also steal data by those computers, including confidential business along with also commercial information, work product, along with also sensitive victim employee information, such as usernames along with also passwords in which could be used to extend unauthorized access within the victim systems,” the DOJ said.

The most affected one of the three companies was the item giant Siemens. According to the indictment, the defendants:

  • Stole approximately 407 gigabytes of data by Siemens’ energy, technology along with also transportation businesses in 2014.
  • Hacked into Trimble’s network along with also stole at least 275 megabytes of data, including trade secrets related to global navigation satellite systems technology the company spent millions of dollars developing, in 2015 along with also 2016.
  • Accessed an internal email server at Moody’s in 2011 along with also forwarded the account of an unidentified “prominent employee” to their own accounts, along with also eventually accessing the confidential messages sent to in which account until 2014.

According to the DoJ, both Wu along with also Dong were co-founders along with also shareholders of Boyusec, while Lei was an employee. All the three defendants were residents of Guangzhou.

The Chinese men have been charged that has a total of eight counts, including one charge of committing computer fraud along with also abuse, two charges of committing trade secret theft, three counts of wire fraud along with also four to eight counts of aggravated identity theft.

If found guilty within the court of law, the hackers face a maximum sentence of 42 years in prison.

Article Categories:
Security Hacks

Leave a Comment

Your email address will not be published. Required fields are marked *

four − 3 =