Critical Infrastructure Security, Threat Intelligence

NXP subjected to years-long hack

Major Dutch semiconductor manufacturer NXP had its network compromised by the Chinese-linked hacking operation Chimera between late 2017 and early 2020, which resulted in the theft of chip designs and other intellectual property, according to Tom's Hardware. Such an attack, which would not have been detected if not for a similar intrusion against Dutch airline Transavia, involved the utilization of previously compromised credentials and brute-force attacks, the modification of phone numbers to evade double authentication techniques, and the usage of the ChimeRAR hacking tool, a report from NRC showed. NXP has confirmed the compromise of intellectual property but noted that it did not notify the public regarding the incident due to the low risk that its data would be used for replicating designs. Network security improvements have also been implemented by the semiconductor giant, which has since bolstered monitoring systems and enhanced data accessibility and transfer controls to prevent similar breaches in the future.

Related

Details on 2021 Chemonics hack remain scant

International development firm Chemonics, which mainly caters to the United States Agency of International Development, has not yet provided more extensive information regarding a cyberattack that compromised more than 6,000 individuals initially reported in July 2021, reports FedScoop.

Media, think tank, service spoofing conducted in APT42 cyberespionage operations

Iranian state-backed hacking operation APT42 — also known as Mint Sandstorm, Mint Phosphorous, Charming Kitten, and TA453 — has spoofed major news organizations, including The Washington Post, think tanks, such as the McCain Institute, and internet services, such as Gmail, YouTube, and Google Drive, as part of cyberespionage campaigns against journalists and human rights activists, reports CyberScoop.

Feds warn of new Kimsuky phishing attack techniques

The U.S. State Department, National Security Agency, and the FBI have issued a joint advisory warning organizations across the country, especially educational entities, non-profits, and think tanks, regarding the increasingly advanced phishing techniques leveraged by North Korean state-backed hacking group Kimsuky, also known as APT43, Emerald Sleet, and Velvet Chollima, Nextgov reports.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.