Smartphones transformed into digitally exposed entry points due to escalating Chinese cyber threats
In the ever-evolving digital landscape, the importance of safeguarding our smartphones from persistent cyber threats cannot be overstated. Collaborative efforts between governments and the private sector are essential in countering these persistent threats, particularly those emanating from Chinese hackers.
Recent reports have highlighted the use of forensic data extraction malware, such as the Massistant tool, developed by Chinese tech giant Xiamen Meiya Pico. This Android-based spyware requires physical access to the device to be installed and extracts sensitive information like text messages, images, GPS location data, audio recordings, contacts, and more. It operates via a companion desktop forensic software which pulls data once permissions are granted on the phone. Massistant is reportedly widely used by Chinese law enforcement and other authorities, including at border checkpoints where phones can be confiscated.
Other Chinese cyber threats, although more generally targeting computer networks, include sophisticated nation-state hacking groups exploiting zero-day vulnerabilities in widely used software platforms like Microsoft SharePoint. These threat groups have links to Chinese government bodies and front companies, showcasing a broader ecosystem of cyber operations.
To counter these threats, individuals and organizations are encouraged to adopt several measures. For personal use, avoid bringing sensitive or personal smartphones into regions where such forensic tools are used, especially if physical device confiscation or inspection is possible. Use strong encryption and security apps for communications and data storage, but remember that Massistant can extract data even from encrypted messaging apps by accessing messages stored on the device. Enable full device encryption and strong lock screen protections to make unauthorized physical access more difficult. Keep device software up to date to minimize vulnerabilities that malware or hackers can exploit remotely. Consider the use of remote wipe, secure backups, and minimizing stored sensitive data on devices when traveling.
For organizations, implement strong network security protocols, patch management, and monitoring for suspicious access to reduce risks from broader cyber threats.
Navigating these cyber threats requires a forward-thinking approach, embracing technology and policy to safeguard against potential breaches. International dialogue on cybersecurity measures has been prompted due to the rise of smartphone breaches linked to Chinese hackers. Sustained innovation in cybersecurity and international partnerships are essential in reinforcing the barricades around our digital lives.
References:
[1] The New York Times. (2021). How China's Hackers Are Using Smartphones to Spy on Americans. [online] Available at: https://www.nytimes.com/2021/05/02/us/politics/china-hackers-smartphones.html
[2] Wired. (2021). How China's Massistant Spyware Can Steal Your Data. [online] Available at: https://www.wired.com/story/china-massistant-spyware-smartphones/
[3] The Washington Post. (2021). Chinese hackers are using zero-day vulnerabilities to attack Microsoft SharePoint servers. [online] Available at: https://www.washingtonpost.com/technology/2021/05/11/chinese-hackers-are-using-zero-day-vulnerabilities-to-attack-microsoft-sharepoint-servers/
[4] The Record by Recorded Future. (2020). Chinese Hackers Exploit Zero-Day in Microsoft SharePoint. [online] Available at: https://therecord.media/chinese-hackers-exploit-zero-day-in-microsoft-sharepoint/
- To counter the growing threat of Chinese cyberattacks, such as the use of Android-based spyware like Massistant, it is crucial for individuals and organizations to prioritize cybersecurity measures.
- Implementing strong encryption and security apps for communications and data storage, as well as enabling full device encryption and lock screen protections, can help safeguard smartphones from malware and unauthorized physical access.
- In the realm of technology, an encyclopedia of threat intelligence would prove invaluable in combating sophisticated cyber threats like the nation-state hacking groups exploiting zero-day vulnerabilities in widely used software platforms.
- Collaborative efforts between governments, cybersecurity experts, and tech companies are essential in fortifying our digital landscape against persistent threats, including Chinese hackers targeting smartphones and computer networks.
