Data leak from Shanghai-based i-Soon (Anxun) cybersecurity firm reveals potential workings of a Chinese government-backed hacking group. (Kagenmi from Thinkstock.com)


February 23, 2024

A data leak from a Shanghai-based cybersecurity firm, i-Soon (also known as Anxun), has led researchers to speculate that it has exposed the operations of a Chinese government-backed hacking group. The company, which reportedly does contract work for various Chinese government departments, including the Ministry of Public Security, Ministry of State Security, and the People's Liberation Army, had over 500 documents published on GitHub last weekend.

According to SentinelOne, the leaked documents provide concrete details about the maturing nature of China's cyber espionage ecosystem and how government targeting requirements drive a competitive marketplace of independent contractor hackers-for-hire. While the source of the leak is not entirely clear, Malwarebytes researchers suggest it may have been a disgruntled staff member.

The documents reveal that i-Soon has been responsible for compromising at least 14 governments, pro-democracy organizations in Hong Kong, universities, and NATO. They also show that i-Soon competes for low-value hacking contracts from various government agencies. The company's tools include a Twitter stealer, custom Remote Access Trojans (RATs) for Windows and iOS, and an Android version capable of extracting messages from popular Chinese chatting apps.

The leaked documents also include marketing materials and technical documents that demonstrate how the company's products function to compromise and exploit targets. Some documents show i-Soon's involvement in counterterrorism work, including past hacks targeting counterterrorism centers in Pakistan and Afghanistan.

While the leaked documents may have been intended to embarrass the company, they also raise important questions for the cybersecurity community. For defenders and business leaders, the lesson is that their organization's threat model likely includes underpaid technical experts who may pilfer valuable information. This should serve as a wakeup call and a call to action for organizations to bolster their cybersecurity defenses.

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

You may also like

Bitcoin Investor Buys an Entire SpaceX Flight for the Ultimate Polar Adventure

A bold new chapter in space tourism unfolded as Chun Wang, a Bitcoin investor and entrepreneur, launched into orbit on....

Elon Musk’s xAI Acquires X in $33 Billion Stock Deal

Elon Musk’s artificial intelligence startup, xAI, has officially taken over his social media platform, X, in a deal valued at....

Trump Considers Lowering Tariffs to Seal TikTok Deal

Former U.S. President Donald Trump signalled on Wednesday that he might reduce tariffs on China to facilitate the sale of....

U.S. Robotics Firms Urge National Strategy to Compete China

American robotics companies are calling for a national U.S. robotics strategy to strengthen the industry and maintain a competitive edge....

Waymo Plans Self-Driving Taxi Service in Washington by 2026

Alphabet’s autonomous taxi service, Waymo, is expanding to Washington, D.C., with plans to launch in 2026. The announcement, made on....

Trump Aides Used Signal for Secret War Talks – What to Know

Top officials from the Trump administration reportedly used the encrypted messaging app Signal to discuss military plans, sparking concerns over....

PsiQuantum Secures $750M to Advance Quantum Computing

According to sources, Quantum computing startup PsiQuantum is securing at least $750 million in funding, pushing its valuation to $6....

Are We Ready to Mine Metals from Space? The Future of Asteroid Mining

Asteroid Mining: A Sci-Fi Dream or an Inevitable Future? For decades, space enthusiasts and scientists have imagined a future where....

Nvidia CEO Surprised By Public Quantum Computing Companies

Nvidia CEO Jensen Huang admitted he was unaware that publicly traded quantum computing firms existed when he previously commented on....

Tesla Faces Crisis: Cybertruck Recall & Musk’s Trump Ties

Tesla and its CEO Elon Musk are in hot water as controversy swirls around the company. One of Tesla’s strongest....

Humanoid Robots Could Arrive Sooner Than Expected, Says Nvidia CEO

The world may be closer to a robotics revolution than most people think. Nvidia CEO Jensen Huang believes humanoid robots....

Nvidia’s AI Vision: Jensen Huang Unveils Future at GTC 2025

Nvidia CEO Jensen Huang took center stage at the GTC 2025 conference, often dubbed “AI Woodstock,” to discuss the rapid....