• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Prolific Chinese Hackers Stole US COVID funds

You are here: Home / General Cyber Security News / Prolific Chinese Hackers Stole US COVID funds
December 6, 2022

A Chinese state-sponsored APT group has stolen at minimum $20m from US COVID-aid resources, in what seems to be a initially-of-its type campaign, in accordance to the Secret Service.

The support advised NBC that it linked prolific Chengdu-based APT41 to the raids, which targeted Little Enterprise Administration (SBA) loans and unemployment insurance plan cash in far more than 12 states.

On the other hand, the true scale of the campaign may possibly be significantly better. The Mystery Provider claimed it has around 1000 investigations now open up into theft and fraud connected to community benefits courses.

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


“It would be mad to imagine this group didn’t focus on all 50 states,” stated Roy Dotson, national pandemic fraud restoration coordinator for the Mystery Provider.

The marketing campaign commenced in mid-2020 and impacted 2000 accounts connected with far more than 40,000 financial transactions, in accordance to NBC.

It is unclear at this phase no matter whether the group was exclusively provided orders to steal the cash or if government handlers basically appeared the other way.

APT41 has undoubtedly carried out similar in the past – in 2019 FireEye stated it detected the exact same group making use of ransomware against gaming firms and attacking cryptocurrency companies for own revenue.

“APT41 is one of a kind among the the China-nexus actors we keep track of in that it utilizes resources typically reserved for espionage campaigns in what seems to be exercise for private get,” said FireEye SVP of world wide risk intelligence, Sandra Joyce. “They are as agile as they are skilled and well-resourced.”

The Top secret Services stated it has been ready to recover all around fifty percent of the stolen $20m, whilst this is just a drop in the ocean in comparison to the amount shed via fraud.

An in-depth assessment of 4 states by the Labor Division Place of work of Inspector Common (OIG) found that about a fifth (19%) of the $872.5bn in federal pandemic unemployment cash have been improperly compensated.


Some pieces of this report are sourced from:
www.infosecurity-magazine.com

Previous Post: «open source ransomware toolkit cryptonite turns into accidental wiper malware Open Source Ransomware Toolkit Cryptonite Turns Into Accidental Wiper Malware
Next Post: Sophos appoints new SVP of sales for EMEA sophos appoints new svp of sales for emea»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • BREAKING: 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. – Dutch Operation
  • OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities
  • Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
  • Deploying AI Agents? Learn to Secure Them Before Hackers Strike Your Business
  • Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
  • Beyond Vulnerability Management – Can You CVE What I CVE?
  • Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android
  • Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
  • 38,000+ FreeDrain Subdomains Found Exploiting SEO to Steal Crypto Wallet Seed Phrases
  • SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root

Copyright © TheCyberSecurity.News, All Rights Reserved.