Unit 42 claims Chinese hackers targeting Cambodian government
Unit 42 assessed that these organisations are likely targets of long-term cyberespionage and that the identified infrastructure was used for persistent access to crucial government networks.
According to Unit 42, a threat intelligence and response firm, two prominent Chinese hacking groups have targeted and continue to target entities within the Cambodian government.
Initially, Unit 42 had identified Chinese Advanced Persistent Threat (APT) infrastructure masquerading as cloud backup services. In September and October 2023, 24 Cambodian government organisations, including those in national defence, election oversight, human rights, finance, commerce, politics, natural resources, and telecommunications, regularly communicated with a specific infrastructure. These entities possess sensitive data, such as financial information, citizens’ data, and classified government information.
Unit 42 assessed that these organisations are likely targets of long-term cyberespionage and that the identified infrastructure was used for persistent access to crucial government networks.
China and Cambodia maintain strong diplomatic and economic ties, with China hugely investing in Cambodia.
About author
DW Team
The GIP Digital Watch Observatory team, consisting of over 30 digital policy experts from around the world, excels in the fields of research and analysis on digital policy issues. The team is backed by the creative prowess of Creative Lab Diplo and the technical expertise of the Diplo tech team.