10 Apr 2017
TLP Rating: White
Global campaign targeting multi-national IT service providers
CERT NZ is aware of ongoing targeted attacks against multi-national IT service providers by a group known as APT10.
PwC and BAE Systems have co-authored a comprehensive report on the incident, which is known as Operation Cloud Hopper. It explains the threat in detail, and provides a list of indicators of compromise (IOCs).
PwC report on Operation Cloud Hopper External Link
BAE blog post on APT10 - Operation Cloud Hopper External Link
There is no evidence at this stage to suggest the general public or small to medium enterprises are being targeted.