A significant data breach from a Chinese cybersecurity firm has unveiled a world where state agents pay hefty sums to gather information on various targets, including foreign governments, while hackers collect vast amounts of data on individuals and organizations of interest.
“The leak sheds light on China’s hackers for hire, a major challenge acknowledged by the UK’s security services.”
More than 500 leaked files from the Chinese firm I-Soon were uploaded to Github, with cybersecurity experts confirming their authenticity.
These files contain discussions about targets such as NATO and the UK Foreign Office.
This leak offers an unprecedented glimpse into China’s intelligence-gathering operations and the competitive landscape faced by its commercial hackers amid economic struggles.
“I-Soon’s activities include a variety of services, from hacking email accounts to compromising different operating systems.”
The leaked files also reveal collaborations and disputes with other Chinese hacking groups, such as Chengdu 404, which has been indicted by the US Department of Justice for cyber-attacks.
Targets discussed in the leaks range from British think tanks to ministries in ASEAN countries, with some data gathered on speculative grounds and others through specific contracts with Chinese authorities.
“Chatham House and Nato officials express concern over attempted cyber-attacks, emphasizing the importance of cybersecurity measures.”
The leaked documents also highlight I-Soon’s domestic activities, including cooperation with authorities in Xinjiang for “anti-terrorism” support.
“Despite promises to clients, internal discussions reflect concerns over the company’s financial struggles.”
Chat logs reveal mundane conversations among employees, discussing topics like COVID-19 and financial pressures within the company.
“Increasing financial woes and staff departures lead to a bleak outlook for I-Soon’s future.”
The leaks underscore the challenges and complexities of China’s cyber landscape, where commercial interests intersect with state objectives, shaping the global cybersecurity landscape.
