Chinese state-led “Cloud Hopper” campaign targets technology service providers

Going back to at least 2014, Chinese state-affiliated hacker group APT10 hacked into major cloud providers, also known as managed service providers, and gained access to their customers’ data. The cyber campaign affected at least eight of the world’s biggest managed service providers, such as Hewlett Packard Enterprise and IBM. Examples of potential end targets for APT10 include Brazilian mining giant Vale who sells large quantities of its product to Chinese companies, biotech firm Sygenta who was bought by Chinese state-owned conglomerate ChemChina during the cybercampaign, and Swedish telecoms giant Ericsson who has been competing with Huawei over 5G networs. While “Cloud Hopper” mainly targeted corporate intellectual property, government agencies were also affected. APT10 stole personnel records of more than 100,000 people from the U.S. Navy. The U.S. Department of Justice indicted two Chinese hackers associated to APT10 in December 2018, among other things over their contribution to the Cloud Hopper campaign.

About This Incident

Threat Actors: China

Incident Metadata

Date: 2014-2018
Country: United States