News
Symantec Discovers Highly Sophisticated Chinese Hacking Tool
In its research report, Symantec calls the tool Daxin and describes it as the most advanced piece of malware researchers have seen.
In August 2021, the Cybersecurity and Infrastructure Security Agency (CISA) established the Joint Cyber Defense Collaborative (JCDC), a public-private cybersecurity information sharing partnership whose purpose is to unify defensive actions and drive down risk in advance of cyber incidents occurring. Now, one JCDC member, American cybersecurity software company Symantec, has discovered a never-before-seen hacking tool that has been successfully hiding for over a decade.
In its research report, Symantec calls the tool Daxin and describes it as the most advanced piece of malware Symantec researchers have seen.
Based on instances where components of the tool were combined with known Chinese hacking infrastructure, it’s almost certain that Daxin has originated from China. What’s more, the computers on which Daxin was discovered were also infected with other tools Chinese espionage actors are known to use.
“The malware appears to be used in a long-running espionage campaign against select governments and other critical infrastructure targets” explains Symantec’s Treat Hunter Team. “Most of the targets appear to be organizations and governments of strategic interest to China”.
Daxin allows attackers to perform various communications and data-gathering operations, and it appears to be optimized to perform especially well against hardened targets that can withstand less sophisticated attacks.
Also Read: How To Change Your Wi-Fi Password To Keep Intruders At Bay
“Daxin can be controlled from anywhere in the world once a computer is actually infected” said Vikram Thakur, a technical director with Symantec. “That’s what raises the bar from malware that we see coming out of groups operating from China”.
Since the initial discovery of Daxin, the U.S. government has shared the information with foreign partners to collectively stop the tool from spreading from country to country and from network to network.
So far, no organization in the United States has been infected by Daxin, but previous experience with malware like NotPetya, which was created by Russia to attack Ukrainian infrastructure, tells us that heightened caution is appropriate.
News
Lebanon Ministers Meet Visa Over National Digital Payment Platform
Finance and technology ministers say a comparative study and roadmap will follow before any decision on adopting a model.
Lebanon’s finance and technology ministers met representatives from Visa last week to discuss a proposed unified national digital payment platform for government services, according to a readout from the Ministry of Finance.
The meeting brought together Finance Minister Yassin Jaber, Minister of State for Technology and Artificial Intelligence Kamal Shehadeh, a Visa delegation, and experts from both ministries. Discussion focused on whether Lebanon could establish a single platform through which citizens and institutions would pay taxes, fees, fines and other official transactions electronically, using mobile phones and other digital channels.
The Visa delegation presented examples from countries that have adopted unified government payment platforms, including the United Arab Emirates, Singapore, Estonia and Jordan. According to the readout, the examples were presented as having increased collection rates and expanded financial inclusion.
Talks covered settlement mechanisms, direct transfer to the treasury account, financial reconciliation, risk management, cybersecurity, fees, and an operational model that would involve the private sector. The parties agreed to continue technical and institutional consultations, prepare a comparative study, and develop an implementation roadmap before any decision on adopting a model for Lebanon.
Jaber said the Ministry of Finance had already enabled citizens to pay using credit cards and e-wallets through transfer companies, but described the proposed platform as a further step. He framed the development of electronic payment and collection systems as a priority within the ministry’s modernization plan.
Also Read: Deezer Says AI Tracks Now Make Up 44% Of Uploads
Shehadeh outlined the citizen-facing concept as a single mobile application through which users could settle obligations to ministries, government institutions and other bodies.
“The idea, in short, is that any citizen downloads an application on their mobile phone, through which they can pay all service obligations for all ministries, government institutions, or those owned by the Lebanese state, and others as well, as the platform is not limited only to state institutions,” he said.
Shehadeh added that the platform would not displace banks and money transfer companies that currently provide collection services to the state, calling it complementary to their work.
Lebanon Ministers Meet Visa Over National Digital Payment Platform
AltoVolo Releases Sigma Footage & Sets Date For Demonstrator
Careem Launches Lebanon Aid Drive With WFP
United Arab Emirates To Quit OPEC After 59 Years
YouTube Tests Conversational AI Search Tool
Yango Ride Introduces In-Chat Trip Planning In ChatGPT
Deezer Says AI Tracks Now Make Up 44% Of Uploads
NVIDIA Puts GPT-5.5 Codex In Hands Of 10,000 Staff
United Arab Emirates To Quit OPEC After 59 Years
