Researchers Saying China State-backed Hackers Are Breached A Digital Certificate Authority

 

Researchers Saying China State-backed Hackers Are Breached A Digital Certificate Authority

As part of an ongoing effort that began at least in March 2022, a suspected Chinese state-sponsored actor compromised a digital certificate authority as well as government and defence organisations situated in many Asian nations.

Through highlighting the usage of tools previously associated with this actor, Symantec, by Broadcom Software, connected the assaults to an antagonistic organisation it tracks by the moniker of Billbug. Although no data is believed to have been taken as of yet, espionage and data theft appear to be the driving forces behind the operation.

The advanced persistent threat (APT) organisation Billbug, also known as Bronze Elgin, Lotus Blossom, Lotus Panda, Spring Dragon, and Thrip, is thought to represent Chinese interests. South East Asian military and governmental institutions are the main targets.