**Chinese Hackers Target Government Entities with Sophisticated Malware**

Reports have emerged of a sophisticated cyber attack by Chinese hackers targeting government entities and tech companies using advanced malware known as "Brickstorm." The attack, which has been confirmed by cybersecurity agencies from the US and Canada, utilized a backdoor to infiltrate organizations utilizing the VMware vSphere cloud computing platform.

According to a report published by the Canadian Centre for Cyber Security on December 4, state-sponsored hackers with links to China successfully maintained "long-term persistent access" to an unnamed victim's internal network. The cybercriminals compromised the affected platform, allowing them to steal sensitive information, manipulate files, and create "rogue, hidden VMs" (virtual machines), effectively taking control without being detected.

The attack is believed to have begun as far back as April 2024 and continued until at least September of this year. The malware analysis report published by the Canadian Cyber Centre, in collaboration with the US Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA), identified eight different Brickstorm malware samples.

While it is unclear exactly how many organizations were targeted or successfully penetrated, the report highlights the sophistication and stealth of the Chinese hackers. The Brickstorm malware allowed them to move undetected through an organization's network, creating a backdoor for further access and manipulation.

The attack has significant implications for government entities and tech companies that rely on VMware vSphere cloud computing platform. In response to the report, Broadcom, the owner of VMware vSphere, issued a statement urging customers to download up-to-date security patches whenever possible. The company's spokesperson emphasized the importance of staying vigilant in the face of sophisticated cyber threats.

This is not an isolated incident. In September, the Google Threat Intelligence Group published its own report on Brickstorm, warning organizations to "reevaluate their threat model for appliances and conduct hunt exercises" against specified threat actors. The report underscores the need for enhanced cybersecurity measures to protect against advanced malware attacks.

The Brickstorm attack serves as a reminder of the evolving nature of cyber threats and the importance of staying ahead of malicious actors. As governments and tech companies work to strengthen their defenses, it is clear that the stakes have never been higher in the world of cybersecurity.