Country for PR: United States
Contributor: PR Newswire New York
Wednesday, June 16 2021 - 22:01
AsiaNet
Recorded Future: Threat Activity Group RedFoxtrot Linked to Chinese Military
BOSTON, June 17, 2021 /PRNewswire-AsiaNet/ --

     -- Research Provides End-to-End Glimpse Into People's Liberation Army 
(PLA) Cyber Operations

     -- Network Intrusions Detected Targeting Aerospace and Defense, 
Government, Telecommunications, Mining, and Research Organizations

Recorded Future, the world's largest provider of intelligence for enterprise 
security, today revealed cyber espionage activity attributed to a suspected 
Chinese state-sponsored threat activity group, named RedFoxtrot by Recorded 
Future's threat research arm Insikt Group, in a new report [ 
https://c212.net/c/link/?t=0&l=en&o=3184621-1&h=3708588588&u=https%3A%2F%2Fgo.recordedfuture.com%2Fredfoxtrot-insikt-report&a=report 
]. Insikt Group identified specific ties between RedFoxtrot's activity and the 
Chinese military intelligence apparatus, the People's Liberation Army (PLA) 
Unit 69010 within the Strategic Support Force (SSF), offering a rare glimpse 
into SSF operations since the PLA's restructuring in 2015. 

Logo - https://mma.prnewswire.com/media/705622/Recorded_Future_Logo.jpg 

Recorded Future's large-scale, automated network traffic analytics and expert 
analysis detected intrusions targeting sectors across bordering Asian 
countries. Key findings from the report include: 

    -- Active since 2014, RedFoxtrot predominantly targets aerospace and
       defense, government,telecommunications, mining, and research
       organizations in Afghanistan, India, Kazakhstan, Kyrgyzstan, Pakistan,
       Tajikistan, and Uzbekistan, aligning with the operational remit of PLA
       Unit 69010. 
    -- RedFoxtrot maintains large amounts of operational infrastructure and has
       likely employed both bespoke and publicly available malware families
       commonly used by Chinese cyber espionage groups. 
    -- RedFoxtrot activity overlaps with threat groups tracked by other
       security vendors such as Temp.Trident and Nomad Panda. 
    -- It is assessed with high confidence that RedFoxtrot is a Chinese state
       sponsored threat activity group based on identified links to a specific
       PLA unit and the use of shared custom capabilities considered unique to
       Chinese cyber espionage groups.

"The recent activity of the People's Liberation Army has largely been a black 
box for the intelligence community. Being able to provide this rare end-to-end 
glimpse into PLA activity and Chinese military tactics and motivations provides 
invaluable insight into the global threat landscape. The persistent and 
pervasive monitoring and collection of intelligence is crucial in order to 
disrupt adversaries and inform an organization or government's security 
posture." — Dr. Christopher Ahlberg, CEO and Co-Founder, Recorded Future

To access the full report, visit: Threat Activity Group RedFoxtrot Linked to 
China's PLA Unit 69010; Targets Bordering Asian Countries [ 
https://c212.net/c/link/?t=0&l=en&o=3184621-1&h=3957328804&u=https%3A%2F%2Fgo.recordedfuture.com%2Fredfoxtrot-insikt-report&a=Threat+Activity+Group+RedFoxtrot+Linked+to+China%27s+PLA+Unit+69010%3B+Targets+Bordering+Asian+Countries 
] 

For additional resources on Chinese threat activity groups, visit: 
https://www.recordedfuture.com/resources/ 

About Insikt Group
Recorded Future's Insikt Group, the company's threat research division, 
comprises analysts and security researchers with deep government, law 
enforcement, military, and intelligence agency experience. Their mission is to 
produce intelligence that reduces risk for clients, enables tangible outcomes, 
and prevents business disruption.

About Recorded Future
Recorded Future is the world's largest provider of intelligence for enterprise 
security. By combining persistent and pervasive automated data collection and 
analytics with human analysis, Recorded Future delivers intelligence that is 
timely, accurate, and actionable. In a world of ever-increasing chaos and 
uncertainty, Recorded Future empowers organizations with the visibility they 
need to identify and detect threats faster; take proactive action to disrupt 
adversaries; and protect their people, systems, and assets, so business can be 
conducted with confidence. Recorded Future is trusted by more than 1,000 
businesses and government organizations around the world. Learn more at 
www.recordedfuture.com and follow us on Twitter at @RecordedFuture.

SOURCE  Recorded Future

CONTACT: Cait Mattingly, Global Communications, Recorded Future, 
media@recordedfuture.com


Print Print this Release