Fishy Business: China’s Cyber Shenanigans Unveiled in Operation FishMedley Report
In a plot twist worthy of a spy thriller, cybersecurity firm ESET reveals that I-Soon’s operational arm, FishMonger, hacked seven organizations across the globe in 2022, dubbing it Operation FishMedley. With tools like ShadowPad and SodaMaster, these cyber agents apparently decided to go phishing… in bulk!
Hot Take:
Just when you thought your inbox couldn’t get more crowded, here comes a fresh batch of cyber-espionage drama from the folks over at I-Soon. Not just any kind of drama, but an international soap opera with hackers-for-hire, a government-backed espionage team, and a cast of victims that includes everyone from government agencies to your local neighborhood NGO. Forget Netflix, this is where the real action unfolds!
Key Points:
- I-Soon, a Chinese cybersecurity firm, has been linked to international espionage activities, compromising government organizations, NGOs, and think tanks.
- ESET reports that FishMonger, the operational arm of I-Soon, targeted seven organizations across multiple countries in 2022 as part of Operation FishMedley.
- The US indicted ten I-Soon employees for operating as “hackers-for-hire”, targeting sensitive systems including US federal and state agencies.
- Attackers utilized tools like ShadowPad, Spyder, SodaMaster, and a newly identified RPipeCommander to infiltrate networks and extract data.
- ESET’s findings show that these attacks align with broader Beijing interests in global cyber operations.
Already a member? Log in here