Contact Contact Us

Chinese APT Group Targets Japanese Media Sector, Turkish Hacker Group Hacks Egypt’s State-Run News Agency

Chinese cyber espionage group APT10 has been targeting the Japanese media sector by sending spear phishing emails with macros-laden Microsoft Word documents that download a newer version of the UPPERCUT backdoor. The latest UPPERCUT backdoor can download and validate files, format timestamp, and capture desktop screenshots. Due to a change in the way it initialises the Blowfish encryption key, the latest variant makes it more difficult for analysts to detect and decrypt the backdoor’s network communications.

In addition, a Turkish hacker group known as the Akincilar group hacked the website of the Middle East News Agency (MENA) to censure death sentences against leaders of the Muslim Brotherhood movement. Prior to the attack, a Cairo court had upheld death sentences against 75 Muslim Brotherhood members and supporters for participating in protests against the removal of President Mohamed Morsi in 2013. The MENA said that hackers linked to the Muslim Brotherhood were responsible for the hack. The Akincilar group had compromised the website of The Times of Israel with a pro-Palestinian message in November last year.

[1] APT10 Targeting Japanese Corporations Using Updated TTPs
[2] Turkish hackers take over Egypt state-media website, condemn Muslim Brotherhood death sentences

Ensign InfoSecurity Singapore
30A Kallang Place
Singapore 339213

Tel: +65 6788 2882
Fax: +65 6788 3883