10 Apr 2017

Global campaign targeting multi-national IT service providers

CERT NZ is aware of ongoing targeted attacks against multi-national IT service providers by a group known as APT10.

PwC and BAE Systems have co-authored a comprehensive report on the incident, which is known as Operation Cloud Hopper. It explains the threat in detail, and provides a list of indicators of compromise (IOCs).

PwC report on Operation Cloud Hopper External Link

BAE blog post on APT10 - Operation Cloud Hopper External Link

There is no evidence at this stage to suggest the general public or small to medium enterprises are being targeted.