Exclusive Chinese state-sponsored spies have been discovered in a global engineering firm's internal network, after first gaining entry using default administrator portal credentials on an IBM AIX server.
New York governor's former aide indicted as Chinese spy | BBC News
In an exclusive interview with The Register, Binary Defense's Director of Security Research John Dwyer said the cybersnoopers first compromised one of the victim's three unmanaged AIX servers in March and remained in the US-headquartered manufacturer's IT environment for four months while they looked around for more boxes to command.
This particular company, which Dwyer declined to name, makes components for public and private aviation organizations and other critical sectors, including oil and gas. The breach has been attributed to an unnamed team from the People's Republic of China, whose motives appear to be espionage and blueprint theft.
Attempts to tamper with products are happening earlier and earlier in the supply chain pipeline…
