A hacker with China’s national flag in background. (Getty Images) PHP backdoor looks to be work of Chinese-linked APT group Known as Glutton, researchers at QiAnXin’s XLab believe Winnti is responsible for the malware. Dec 16, 2024 By Greg Otto
(Getty Image) Espionage group targeted hotels, governments, seized on Microsoft Exchange vulnerability ESET said it discovered the group, which has been active since 2019. Sep 23, 2021 By Tim Starks
(Getty Images) Suspected Chinese hackers return with unusual attacks on domestic gambling companies The Winnti Group's gambling targets are usually in other parts of Asia. Jul 12, 2021 By Tim Starks
Researchers at Slovakian anti-virus company ESET made the discovery. (Scoop News Group photo) At least 10 APT hacking groups have exploited Exchange Server bugs, ESET warns It's a feeding frenzy. Mar 10, 2021 By Sean Lyngaas
(Getty Images) Taiwan accuses Chinese hackers of aggressive attacks on government agencies It's only the latest in a wave of suspected Chinese hacking campaigns to hit Taiwan. Aug 19, 2020 By Sean Lyngaas
A CPC gas station in Taiwan. The station’s parent company was hit with ransomware. (Wikimedia Commons/Solomon 203) Taiwan suggests China’s Winnti group is behind ransomware attack on state oil company An attempt to extort CPC, which is responsible for delivering oil products throughout Taiwan, would be a brazen move. May 18, 2020 By Sean Lyngaas
In the sample examined by ESET, a tool linked with the Winnti Group that obfuscates code was combined with an implant that has been attributed to Equation Group. (Getty) When hacker code collides: A discovered malware sample uses tools from the NSA and a Chinese group ESET researchers found a hacking tool that combines a leaked NSA exploit and a Chinese-linked tool, raising questions about its origins. May 7, 2020 By Shannon Vavra
(Getty) Securiosity: Is Winnti Group running front companies to hide its malware? Winnti Group has appeared time and time again in recent months, but a new report released this week shows that the group may be getting sloppy. Apr 10, 2020 By cyberscoop_staff Jeff Stone
A screenshot of World Wired Labs’s website. The “company” has been selling access to a trojan that is similar to one used by Winnti Group. (Greg Otto/Scoop News Group) Who is World Wired Labs and why are they selling an Android trojan? BlackBerry Cylance researchers think they've found a possible shell company for Chinese hackers known as the Winnti group. Apr 7, 2020 By Shannon Vavra
The group is going after the gambling and betting industries in Southeast Asia. (Pixabay) Chinese-linked hacking group using Windows backdoors to go after gambling industry targets The group has links with Winnti or APT27. Feb 18, 2020 By Shannon Vavra