Skip to content
Subscriber Only

China Cyberspies Mined Japanese Firms for North Korean Secrets

  • Lure related to defense industry suggests possible motive
  • Hackers left text in malware mocking security researchers
A Former Anonymous Hacker’s Search for Redemption
Photographer: Krisztian Bocsi/Bloomberg
Updated on

Chinese hackers have targeted Japanese defense companies, possibly to get information on Tokyo’s policy toward resolving the North Korean nuclear impasse, according to cybersecurity firm FireEye Inc.

The attacks are suspected to come from a group known as APT10, a China-based espionage group that FireEye has been tracking since 2009. One of the lures used in a “spear-phishing” email attack was a defense lecture given by former head of UNESCO, Koichiro Matsuura. Two attacks took place between September and October 2017.