Chinese hackers attack European diplomats. We know how

The latest reports of ESET analysts confirm that the Mirrorface Group uses advanced Spear Phishing techniques to infiltrate diplomatic correspondence and install malware.

Chinese Cyberszpiegan offensive for Europe

China is becoming more and more active in the field of cybercrime, next to well -known Russian activities. Central and Eastern Europe, due to its strategic geopolitical role, has been in the sight of hackers. More frequent cyber attacks are aimed not only at critical infrastructure, but also at diplomatic institutions. Experts warn that cybercriminals can affect electoral processes and destabilize the political situation.

Mirrorface. Chinese hacker group

ESET analysts have revealed that the MirrorFace Group intensified their activities between June and September 2024. Hackers used the Spear Phishing method, aiming at specific diplomats from Central and Eastern Europe. Such attacks are based on a detailed analysis of the victim and creating personalized emails, which contain malicious attachments or links leading to fake applications.

Cyberratak for the Diplomatic Institute

In one case, the Central European Diplomatic Institute became the goal. Cybercriminals used the authentic thread of correspondence with the Japanese NGO, referring to the upcoming Expo 2025 in Osaka. The victims were encouraged to download WORD documents secured by a password or click on dangerous links. Even one careless redirection to other employees resulted in a further spread of malware.

– The object of the attack became the Central European Diplomatic Institute. To our knowledge, it was the first and so far the only case of the group’s attack on the entity in Europe – comments Dominik Breitenbacher, ESET analyst

Spear Phishing. Hidden threat

Spear Phishing is a particularly dangerous form of phishing, which requires cyber criminals a lot of preparation and knowledge of the organization’s structure. Hackers collect information about employees, their roles and official relations to create realistic email.

– Spear Phishing is a special type of phishing, under which cybercriminals take a specific organization and consistently prepare a multi -stage crime scenario. These types of attacks, although rarer and expensive to prepare, are particularly dangerous if they are applied to the higher management staff or representatives of the organization – emphasizes Kamil Sadkowski, analyst of the ESET antivirus laboratory.

How to protect yourself from cyber attacks?

Experts recommend special care when opening attachments and clicking on links, especially in messages from unknown broadcasters or suspicious-looking e-mails. Organizations should regularly train their employees, implement security systems and monitor network activity in real time.