China-backed Hackers Hijack Software Updates to Implant “NSPX30” Spyware

Slovak cybersecurity firm ESET has reported a set of sophisticated AitM attacks carried out by an advanced persistent threat group known as Blackwood. Traced back to being active since 2018, this China-aligned entity is known for hijacking software updates to covertly implant a piece of advanced spyware termed as “NSPX30”. The unidentified companies subjected to this vulnerability risk having their operations disrupted and sensitive information stolen, highlighting a spike in the risks posed by China-backed hackers. Such incidents underline the increasing importance of constant cybersecurity vigilance and stronger security measures implementation across the software industry.

Published: Thu, 25 Jan 2024 15:38:00 +0530