Chinese Hackers Use Trusted ArcGIS App For Year-Long Persistence
ReliaQuest report reveals Flax Typhoon attackers maintained year-long access to an ArcGIS system.
A report by ReliaQuest has found that Chinese hackers, known as the "Flax Typhoon" APT group, used a legitimate public-facing ArcGIS application to gain year-long access to a system.
The ArcGIS application is a geographic information system that allows organizations to manage spatial data for critical functions such as disaster recovery and emergency management.
Security teams are urged to adopt proactive threat hunting after the report revealed the novel techniques used by the hackers to turn trusted software components into persistent backdoors.
The Flax Typhoon APT group is a likely state-sponsored outfit known for "precise, high impact" attacks.
Author's summary: Chinese hackers used ArcGIS app for year-long access.
- Target: Legitimate public-facing ArcGIS application
- Attackers: Flax Typhoon APT group, likely state-sponsored
- Techniques: Novel methods to turn trusted software into backdoors
More News
- CNN announces election night coverage plans, including All Access-only ‘livecast’
- NBA approves $10 billion Lakers sale to Mark Walter
- Stranger Things 5 Trailer Unleashes All-Out War in Hawkins Ahead of Final Season! | SPIN1038
- Bold.af: the Affinity rebrand blends personality and precision, relaunching with a bang
- Undergarment upgrades bring many Mormon women comfort and joy
- Lebanon and Syria October 2025: A Snapshot
- Q.ANT raises another $18 M to drive its photonic AI infrastructure
- Disney Ended Doctor Who Partnership for These 3 Reasons
- Shares of Navan Down 16% In Long-Awaited IPO Debut