Chinese-Linked 'Phantom Taurus' Hackers Target Foreign Ministers Worldwide
Cybersecurity experts have uncovered a sophisticated hacking campaign, dubbed 'Phantom Taurus', linked to suspected Chinese actors. The group has been breaching email servers of foreign ministers worldwide, with targets aligning with China's economic and geopolitical interests.
Palo Alto Networks' latest report reveals that Phantom Taurus has been active for years, collecting intelligence through cyber espionage. The group's tactics include targeting Microsoft Exchange email servers to access diplomatic communications. Keywords and names of interest, such as Chinese President Xi Jinping and his wife, were among the targets.
The hackers' activities correlate with specific geopolitical events and military operations. For instance, they searched for information related to a China-Arab summit in Riyadh, Saudi Arabia, in 2022. Beyond diplomatic circles, Phantom Taurus has targeted the U.S. technology sector and military operations. Countries affected include Afghanistan, Pakistan, and numerous nations in Africa, the Middle East, and Asia, with attacks targeting government ministries, embassies, and telecommunications organizations.
The Chinese Embassy in Washington denies involvement, attributing the hacking activities to various actors in cyberspace. However, the report by Palo Alto Networks serves as the latest evidence of aggressive Chinese hacking activities targeting industries worldwide. As geopolitical tensions rise, so does the need for robust cybersecurity measures to protect sensitive information.
Read also:
- Trump meets with Starmer on the last day of his UK state visit
- NATO & EU Unveil 'Drone Wall' Initiative to Protect European Skies
- Training youth in drone operation skills along the border with Russia, known as the 'Eastern flank' in Lithuania.
- Manipulation of Information in the Era of ChatGPT Artificial Intelligence
