Chinese Hackers Using Open Source Tools To Launch Cyber Attacks

10 September 2024

Three Chinese state-backed threat groups, APT10, GALLIUM, and Stately Taurus, have repeatedly employed a modified version of the open-source network scanning tool NBTscan over the past decade. NBTscan, designed for network discovery and forensics, sends NetBIOS status queries to IP addresses within a specified range. By analyzing the responses, it extracts valuable information like IP addresses, computer names, logged-in usernames, and MAC addresses, as these threat groups have leveraged NBTscan’s capabilities to gather intelligence on target networks and compromise systems. APT10, a Chinese threat group, has been identified as using a modified NBTscan tool to conduct reconnaissance against multiple targets.

Source: GBHackers

Date:

10 September 2024

Categorie(s):

NEWS

Tag(s):

Chinese Hackers, Cyber Espionage, Launch, Network Security, Using

Criminals open DocuSign’s Envelope API to make BEC special delivery5 November 2024
Biden administration prepares second executive order on cybersecurity5 November 2024
Link Index for Customer Identity and Access Management5 November 2024
Technical debt, multi-cloud complexity hinder modern tech adoption5 November 2024
FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions5 November 2024