Amnesty International Says ‘State Sponsored' Hackers Targeted Hong Kong Base (Apr 26, 2019)
Amnesty International, a non-governmental organisation focused on human rights, has revealed it was the latest victim of a state-sponsored cyberattack, detected on March 15, 2019. The attack has been attributed to supporters of the Chinese government due to an analysis of the methods and tactics observed in previous campaigns. While the investigation is still underway, Amnesty International claims that the motive of the attack was to steal information and obstruct their human rights work. Contact information, Hong Kong identity card numbers, and supporters names were among the compromised data, however financial data remains safe. Immediate action was taken by Amnesty International and affected individuals were contacted.
Recommendation: Additional measures should be taken out by affected individuals to protect their identities. Amnesty International has contacted those affected, and urge anyone concerned to contact them. For further protection against future attacks, users should have different passwords for various accounts. Previous breaches can allow actors to gain access to other accounts because users frequently use the same username and password combinations for multiple accounts.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.