Suspected Chinese hackers target Kenyan agencies
Kenyan government entities were among those attacked by alleged Chinese hackers.
This is according to a recent research published by cybersecurity intelligence firm Recorded Future, which says RedJulliett's cyberattacks were spotted between November 2023 and April 2024.
According to the study released on Monday, in addition to the attacks on Taiwan, over 24 government agencies from various nations, including Kenya and Rwanda, were attacked.
The report says RedJulliet also attacked religious organisations' websites in Hong Kong and South Korea, as well as a university in the United States and one in Djibouti.
The report does not name the organisations.
Recorded Future says RedJuliett accessed the servers of those places via a vulnerability in their SoftEther enterprise virtual private network (VPN) software, an open-source VPN that allows remote connections to an organisation’s networks.
In addition to targeting vulnerabilities in internet-facing devices, RedJuliett also used structured query language (SQL) injection and directory traversal exploits against web and SQL applications.
Also, the report says the hackers specifically targeted organisations in government, education, technology, and diplomacy.
It was unclear whether RedJuliett succeeded to break into such organisations.