When news of the Anthem breach first surfaced, investigators claimed that malicious tools, linked exclusively to Chinese cyber attackers, were used against the health insurer. Now, an Arlington, Va.-based security firm has released its own research that expands on these findings.

On Friday, threat intelligence firm ThreatConnect published the details on its blog. The company found that the Anthem incident, which exposed the personal information of 78.8 million consumers, may be connected to the activities of a Chinese cyberespionage group, dubbed “Axiom.”

Also known as “Deep Panda,” the Axiom group has been noted as a state-sponsored group, previously targeting academic institutions in the U.S. as well as Asian and Western government agencies responsible for law enforcement, auditing and internal affairs, and space and aerospace. The years-long exploits of the sophisticated attackers, including their use of a backdoor trojan called Hikit, prompted industry heavyweights, including Microsoft, Symantec, Cisco and FireEye, to launch a coalition last October to fight the threat. Later that month, the firms collaborated to publish a report detailing the tools and tactics used by the Axiom threat group.

Read the Full Article: Source – SC Magazine
http://www.scmagazine.com/research-shows-anthem-attack-may-be-work-of-chinese-cyberespionage-group/article/400739/

source not found