> TritonInfoSec News
Home / Jun 14, 2026 / Story
0
#5 BleepingComputer general June 13, 2026 at 14:06 UTC

Chinese hackers hijack auth flow, spy on isolated network for a decade

By Bill Toulas

AI Summary

A Chinese threat actor hijacked a target organization's authentication stack and maintained undetected access for approximately 10 years, achieving full visibility into administrative activity on an isolated network. The operation involved persistent control of the authentication flow, enabling long-term espionage without triggering standard detection mechanisms. This case illustrates the extreme dwell times achievable when attackers compromise identity infrastructure rather than endpoints.

Read full article → https://www.bleepingcomputer.com/news/security/chi…

Relevance score: 83.0/100

# More from June 14

  1. 1
    Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters SecurityWeek
  2. 2
    ShinyHunters is actively extorting universities after exploiting an unpatched Oracle flaw CyberScoop
  3. 3
    400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer The Hacker News
  4. 4
    Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication The Hacker News
  5. 6
    FBI takes down massive China-based cybercrime network that caused $1.9B in losses CyberScoop
  6. 7
    Ivanti Sentry Exploitation Attempts Hitting Honeypots SecurityWeek
  7. 8
    U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals The Hacker News
  8. 9
    Over 400 Arch Linux packages compromised to push rootkit, infostealer BleepingComputer
  9. 10
    phpBB forum fixes auth bypass bug lurking for a decade BleepingComputer