Microsoft Seizes Domains From Chinese Group 'NICKEL' Used to Attack Governments

NICKEL is a China-based threat actor that targets governments, diplomatic entities, and NGOs around the world. Microsoft’s Digital Crimes Unit has disrupted their operation.

MSTIC has observed NICKEL actors using exploits against unpatched systems to compromise remote access services and appliances. Upon successful intrusion, they have used credential dumpers or stealers to obtain legitimate credentials, which they used to gain access to victim accounts. NICKEL actors created and deployed custom malware that allowed them to maintain persistence on victim networks over extended periods of time.

Chinese Hackers May be Stealing Data to Feed an Artificial Intelligence

Dina Temple-Raston of NPR published a fascinating investigation regarding the Microsoft Exchange attack earlier in 2021.

Officials believe that the breach was in the service of something bigger: China’s artificial intelligence ambitions. The Beijing leadership aims to lead the world in a technology that allows computers to perform tasks that traditionally required human intelligence — such as finding patterns and recognizing speech or faces.

This Man Warned Apple About China Years Ago

Apple hired Doug Guthrie in 2014 to help the company navigate China. But he warned executives of the growing power of Xi Jingping.

Apple, more than any other company, has been vulnerable to the government’s harder line. As a result, over the past several years, Apple has made compromises in China that undercut the values its executives have put at the center of its brand. To placate the authorities and keep its global business running, Apple has put its Chinese customers’ data at risk and aided the Chinese government’s vast censorship operation.

WIN an iPhone 16 Pro Max!