A Digital Eye on supply-chain-based espionage attacks. [Research Saturday]

CyberWire Daily

N2K Networks, Inc.

Daily News, Tech News, News, Technology

4.6 • 1K Ratings

🗓️ 1 February 2025

⏱️ 26 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

This week, Dave Bittner is joined by Juan Andres Guerrero-Saade (JAGS) from SentinelOne's SentinelLabs to discuss the work his team and Tinexta Cyber did on "Operation Digital Eye | Chinese APT Compromises Critical Digital Infrastructure via Visual Studio Code Tunnels." Tinexta Cyber and SentinelLabs have been tracking threat activities targeting business-to-business IT service providers in Southern Europe. Based on the malware, infrastructure, techniques used, victimology, and the timing of the activities, we assess that it is highly likely these attacks were conducted by a China-nexus threat actor with cyberespionage motivations. The relationships between European countries and China are complex, characterized by cooperation, competition, and underlying tensions in areas such as trade, investment, and technology. Suspected China-linked cyberespionage groups frequently target public and private organizations across Europe to gather strategic intelligence, gain competitive advantages, and advance geopolitical, economic, and technological interests. The research can be found here: Operation Digital Eye | Chinese APT Compromises Critical Digital Infrastructure via Visual Studio Code Tunnels Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyberwire Network, powered by N2K.
0:11.5	Your business needs AI solutions that are not only ambitious, but also practical and adaptable.
0:18.1	That's where Domo's AI and Data Products platform comes in. With Domo, you can channel AI and dataable. That's where DOMO's AI and Data Products platform comes in. With DOM, you can
0:23.3	channel AI and data into innovative uses that deliver measurable impact. Secure AI agents, connect,
0:30.5	prepare, and automate your data workflows, helping you gain insights, receive alerts,
0:35.4	and act with ease through guided apps tailored to your role.
0:39.8	Data is hard. Domo is easy.
0:42.9	Learn more at A.i.domo.com.
0:46.4	That's A.i.domo.com.
0:49.2	Thank you. Hello everyone and welcome to the CyberWires Research Saturday.
1:03.3	I'm Dave Bittner, and this is our weekly conversation with researchers and analysts
1:07.9	tracking down the threats and vulnerabilities, solving some of the hard
1:11.8	problems and protecting ourselves in a rapidly evolving cyberspace.
1:16.7	Thanks for joining us.
1:19.9	So this is, as always, great work by Alexander Milankowski.
1:29.8	He's in the labs team.
1:31.3	He's always finding some very interesting things all on his own.
1:34.7	In this case, he collaborated with Luigi Martira over at Tinexta Cyber.
1:40.6	So they were actually kind enough to bring the initial incident to our attention,
1:46.1	and we were able to collaborate on this one. That's Juan Andreas Giro Sade, better known as Jags,
1:52.7	from Sentinel One. Today we're discussing their work Operation Digital Eye. Chinese APT compromises
1:59.7	critical digital infrastructure via Visual Studio Code Tunnels.
	...

Transcript will be available on the free plan in -13 days. Upgrade to see the full transcript now.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.