Hackers Target Managed Service Providers to Breach Client Networks


One of the largest sustained global cyber espionage campaigns is targeting managed IT service providers (MSPs) in order to gain access to MSP customer networks, known as Operation Cloud Hopper, according to a report by PricewaterhouseCoopers (PwC) and BAE Systems.

The threat actor group is known as APT10, said to be based in China. In operation since 2009, they’ve been known to steal a high volume of intellectual property and other sensitive data from MSP networks. More recently, the group has significantly increased the scale and scope of their campaigns to target many different industries, which can be attributed to the compromise of MSP networks and their large cache of diverse customers.

Learn more about the attacks in this blog by Thu Pham.