Security company Qihoo 360 suspects that they are looking for information on how the Chinese government handled the corona virus.
A group of hackers is suspected of carrying out a large-scale attack on several Chinese authorities. The attacks happened in March, Zdnet reports.
The intrusion was detected by Chinese security company Qihoo 360, which says the hackers used a day-zero attack in more than 200 Sangfor SSL VPN servers. The attacks will primarily affect networks belonging to Beijing and Shanghai authorities and Chinese diplomatic missions in a variety of countries around the world.
Qihoo 360 has tracked the attacks to the hacker group Darkhotel. The group, which is believed to be based on the Korean peninsula, is considered one of today’s most skilled state-funded hackers.
According to Qihoo 360’s report, there is reason to believe that the attacks have been to try to find out information about how the Chinese government handled the corona virus when it first appeared in the country.
Sangfors is now releasing several patches that will remove the vulnerability.