The cyber snoops first compromised one of the victim's three unmanaged AIX servers in March, and remained in the US-headquartered manufacturer's IT environment for four months, poking around for more boxes to commandeer.
This incident serves as a warning that shadow IT deployments and unmanaged equipment can be perfect starting points for cyber intruders, especially in critical sectors like aerospace.
After discovering China's agents in its network, the manufacturer promptly alerted law enforcement and engaged government cybersecurity officials to address the issue and mitigate the threat.
The intrusion has been attributed to an unnamed People's Republic of China team, whose motivation appears to be espionage and blueprint theft, highlighting ongoing risks in supply chains.
Collection
[
|
...
]