Chinese APT - Exploiting Edge Devices for Surveillance and Attacks

Explore a 32-minute Black Hat conference talk that delves into the exploitation of edge devices by China-nexus actors. Uncover how Chinese APT groups have compromised firewalls, VPNs, and IoT devices targeting Taiwan's government since 2020. Learn about the challenges of securing closed embedded platforms and the APT's ability to discover and exploit zero-day vulnerabilities. Examine case studies revealing how edge devices are abused for disinformation campaigns, botnet creation, and data exfiltration. Discover new malware families specifically designed for edge devices, including port-knocking backdoors and living-off-the-land binary attacks. Gain insights into mitigation strategies to protect against these sophisticated threats. Presented by Greg Chen, Charles Li, and Che Chang from TeamT5, this talk provides crucial information on emerging cybersecurity risks and defense techniques.

Chinese APT: A Master of Exploiting Edge Devices