Support for Ukraine



Blog Archive



FBI warns US companies about backdoors in Chinese tax software

Full Story Blog Post Friday, July 24, 2020 in Security   View No Comments No Comments
Security
Following the GoldenHelper and GoldenSpy malware reports, the FBI is now warning US companies operating in China.
NAME
The US Federal Bureau of Investigation has sent an alert on Thursday warning US companies about backdoor malware that is silently being installed on the networks of foreign companies operating in China via government-mandated tax software.

The backdoors allow threat actors to execute unauthorized code, infiltrate networks, and steal proprietary data from branches operating in China.

Making matters worse, the FBI says that all foreign companies are required by local Chinese laws to install this particular piece of software in order to handle value-added tax (VAT) payments to the Chinese tax authority.

FBI officials said the backdoor malware was spotted in the VAT software of two Chinese tech companies -- namely Baiwang and Aisino.

Unfortunately, these are the only government-authorized tax software service providers allowed to operate VAT software in China, officials said, suggesting that any foreign company operating in China was most likely affected by this issue.

www.zdnet.com