Norwegian firm Visma hacked by Chinese intelligence, claims report
- 5 years ago
CHINA / NORWAY — Hackers working for Chinese intelligence broke into Norwegian software firm Visma's network to steal private information from its customers, Reuters reports.
An investigative report by the Insikt Group and Rapid7 at Recorded Future claims that, Chinese cyber espionage group APT 10 was able to access the Norwegian firm's networks by using stolen credentials.
The hackers reportedly used a remote access trojan variant to access steal the credentials. This is said to have downloaded three files onto the target's computer to run the malware.
APT 10 was able to compress and exfiltrate the user data using Dropbox, according to the report.
China had previously hacked IBM and Hewlett Packard through its hacking campaign, Cloudhopper in 2017, according to Reuters.
Espen Johansen, Visma's operations and security manager said they discovered the hack soon after it happened. He said he was "confident no client networks were accessed."
An investigative report by the Insikt Group and Rapid7 at Recorded Future claims that, Chinese cyber espionage group APT 10 was able to access the Norwegian firm's networks by using stolen credentials.
The hackers reportedly used a remote access trojan variant to access steal the credentials. This is said to have downloaded three files onto the target's computer to run the malware.
APT 10 was able to compress and exfiltrate the user data using Dropbox, according to the report.
China had previously hacked IBM and Hewlett Packard through its hacking campaign, Cloudhopper in 2017, according to Reuters.
Espen Johansen, Visma's operations and security manager said they discovered the hack soon after it happened. He said he was "confident no client networks were accessed."