Amid Coronavirus Cyber Attacks, a New Report Sheds Light on a Major Chinese Hacking Group

The coronavirus is a rapidly developing news story, so some of the content in this article might be out of date. Check out our most recent coverage of the coronavirus crisis, and subscribe to the Mother Jones Daily newsletter.

While there have been reports over the last few months as the coronavirus exploded around the world of state-sponsored hackers targeting various Chinese interests, a new report out today from a cybersecurity services firm claims to have uncovered a years-long online Chinese espionage operation targeting governments across the Asia-Pacific region, including Australia.

Check Point Software Technologies detailed the operations of a known hacking group called “Naikon” in research released Thursday. The Chinese group, first written about by security researchers in 2015, slipped off the radar over the last few years, but according to the firm’s new report, has been active for much of this time. Using documents emailed to government targets, the hackers gained access to government networks, looking for confidential documents, stealing data, taking screenshots, and installing key-loggers to gather passwords. The hackers sometimes used compromised systems to host and launch further attacks.

The researchers say targeted countries include Australia, Indonesia, the Philippines, Vietnam, Thailand, Myanmar, and Brunei. While the pattern Check Point focuses on in its new report dates back several years, the pandemic’s orgins in China seems to have touched off state-sponsored cyber attacks targeting the country’s interests. In early April, ZDNet reported that a hacking group thought to be operating out of east Asia targeted Chinese government agencies and their employees, both in China and in Chinese government buildings around the world. Reuters reported in late March that the same group, known as “DarkHotel,” are thought to have attempted to hack into the World Health Organization. Bloomberg reported that Vietnamese hackers have also targeted Chinese government officials in Wuhan, the city where the coronavirus is thought to have originated.

FACT:

Mother Jones was founded as a nonprofit in 1976 because we knew corporations and the wealthy wouldn't fund the type of hard-hitting journalism we set out to do.

Today, reader support makes up about two-thirds of our budget, allows us to dig deep on stories that matter, and lets us keep our reporting free for everyone. If you value what you get from Mother Jones, please join us with a tax-deductible donation today so we can keep on doing the type of journalism 2021 demands.

payment methods

FACT:

Mother Jones was founded as a nonprofit in 1976 because we knew corporations and the wealthy wouldn't fund the type of hard-hitting journalism we set out to do.

Today, reader support makes up about two-thirds of our budget, allows us to dig deep on stories that matter, and lets us keep our reporting free for everyone. If you value what you get from Mother Jones, please join us with a tax-deductible donation today so we can keep on doing the type of journalism 2021 demands.

payment methods

We Recommend

Latest

Sign up for our free newsletter

Subscribe to the Mother Jones Daily to have our top stories delivered directly to your inbox.

Get our award-winning magazine

Save big on a full year of investigations, ideas, and insights.

Subscribe

Support our journalism

Help Mother Jones' reporters dig deep with a tax-deductible donation.

Donate