close
close

Association-anemone

Bite-sized brilliance in every update

The Sophos Firewall hack on the government network used an entirely new custom malware program
asane

The Sophos Firewall hack on the government network used an entirely new custom malware program


  • Security researchers at the UK’s NCSC share more details about the tools used in Pacific Rim
  • Pygmy Goat is a competent backdoor, probably used by the Chinese
  • Even the FBI is asking for help identifying scammers

Over the past five years, the Chinese have targeted high-end devices belonging to government agencies and departments in the US and elsewhere in the West in a operation named “Pacific Rim” – and now we have more details about the tools they used and what they allowed the attackers to do.

Pacific Rim primarily targeted Sophos XG firewalls for cyber espionage and data exfiltration, and was most likely driven by several Chinese-speaking threat actors, including the infamous Volt Typhoon.