APT

Malware Supported VPN Network Used By APT Groups

In-brief: A virtual private network (VPN) based in China and designed to help evade that country's restrictive government firewall is actually supported by a network of malware-infected nodes around the globe, RSA says.

A virtual private network (VPN) based in China and designed to help evade that country's restrictive government firewall is actually supported by a network of malware-infected nodes around the globe, according to a report by RSA, the security division of EMC.

The network, which RSA Research  has dubbed "Terracotta" is connected to a range of commercially available VPN software programs in China and includes more than 1,500 nodes. RSA says the network may also be a tool used by sophisticated hacking crews with links to the Chinese military, including the so-called "Shell_Crew" or "DeepPanda" groups.

RSA researchers said they have observed malicious activity associated with the Terracotta VPN nodes since 2013, though the scheme may date back long before t...

To read the full post subscribe and log in. Subscription is free and you can register below. Alreayd a member? Log in below!

New users register here