Highlights: A Chinese-affiliated attack group (APT31) cloned and actively used an American-affiliated attack group’s (Equation Group) cyber offensive tool code named “EpMe”. Both attack tools exploit a then unknown Windows vulnerability (CVE-2017-0005), for elevating the privileges of the attacker on the infected machine. The American version of the tool was cloned by APT31 during 2014…

The post Jian – The Chinese Double-edged Cyber Sword appeared first on Check Point Software.

By admin