Chinese Hackers Using Open Source Tools To Launch Cyber Attacks

Chinese state-backed cyber threat groups APT10, GALLIUM, and Stately Taurus have been using NBTscan, a network scanning tool, to discover network details and compromise systems. They have used the tool to gather details on targets, identify weaknesses and facilitate hacking operations. Chinese state-sponsored hacking group APT40 has also been using the ScanBox reconnaissance tool for years to aid in phishing campaigns against several global organizations.