Chinese state-affiliated threat actor targets French organizations’ routers

In July 2021, French cybersecurity agency ANSSI issued an alert identifying APT31, a Chinese state-affiliated hacker group, as the threat actor responsible for breaching an array of French entities. APT31 also operates under the aliases Zirconium and Judgment Panda and specializes in the theft of highly competitive organizations’ intellectual property. While the effected institutions were not named, ANSSI noted that the campaign utilized “a network of compromised home routers as operational relay boxes” to conduct reconnaissance and attacks. A December update of the ANSSI alert notes that, while the attack is still ongoing, APT31 has ceased its use of infected home routers.

About This Incident

Threat Actors: China

Incident Metadata

Date: July 2021
Country: France