This information operation uses inauthentic social media accounts to spread unverified claims that the US is irresponsibly conducting cyber espionage operations against China and other countries.
This anti-American campaign appears to be part of a wider propaganda campaign by the Chinese Communist Party (CCP) to support the expansion of Chinese intelligence agencies abroad and counter similar actions against the PRC. It could also be an internal propaganda target to garner public support for new Chinese laws by declaring the US as a major threat.
Online accounts often impersonated Westerners outside of China, but our research geolocated some account operators associated with Spamouflage to Yancheng in Jiangsu province. In addition, we show that it is likely that at least some of the operators behind this campaign are affiliated with the Yancheng Public Security Bureau, MPS, or are “Internet commentators” employed by the China Cyberspace Administration.
The Chinese cybersecurity company Qi An Xin (奇安信), partly owned by the state, also occasionally supports an influence operation. Our research shows that the company has close ties to Chinese intelligence, military, and security agencies and that it can provide digital infrastructure support to Chinese government agencies that conduct covert operations online.
Qi Anxin Won Two CDM InfoSec Awards 2023 Awards at RSAC2023
Release Date: 2023-04-26
Author: Qi Anxin Group
share to:
From April 24th to 26th, RSAC2023 was held in San Francisco, USA, and Chinese network security company Qi Anxin Group presented its C-SOC solution. During the conference, CDM (Cyber Defense Magazine, Cyber Defense Magazine), the world’s leading electronic information security media, presented the Global InfoSec Awards 2023 series of awards, and Qi Anxin Group’s SIEM and EDR won the Hot Company Award (Hot Company).
Qi Anxin Won Two CDM InfoSec Awards 2023 Awards at RSAC2023
In 2022, Qi Anxin Group has stepped up efforts to internationalize its products. Based on the original international products, it has launched international versions of NGSOC, EDR and other products, and successfully won the bid for the construction project of a network security command center in a capital city of an overseas country.
Qi Anxin SIEM (Security Information and Event Management) is an internationalized version of Qi Anxin Situational Awareness and Security Operation Platform (NGSOC). Continuously monitor the security situation and upgrade the system from “passive defense” to “active defense”.
Qi Anxin Won Two CDM InfoSec Awards 2023 Awards at RSAC2023
In the Beijing 2022 Winter Olympics and Winter Paralympics, Qi Anxin NGSOC, as the core security monitoring platform of the Winter Olympics Security Operation Center, is linked with various products such as Qi Anxin NDR, EDR, NGFW, SOAR, and threat intelligence platforms. More than 1,000 data sources, covering 38 venues and 188 service stations in three competition areas, monitored and dealt with more than 1,000 abnormal or violation events, playing a core role in ensuring “zero accidents” in the network security of the Beijing Winter Olympics.
At this RSAC conference, the C-SOC solution with the SIEM platform as the core was officially unveiled for the first time and became one of the products that attracted much attention in the exhibition.
EDR (Endpoint Detection and Response), Qi An Xintianqing terminal security management system, is a new generation of terminal security products driven by threat intelligence. It has a threat behavior detection rule model, which can be based on abnormal behavior, machine learning permission analysis, memory instruction set Capabilities such as monitoring, from event-related devices, malicious processes, to detailed information on the operation of each process, can be clearly presented, restore the overall picture of threats and evaluate the scope of response, and help security analysts establish a comprehensive and clear understanding of threats.
With its excellent security capabilities, Tianqing is protecting 50 million government and enterprise terminals, and has repeatedly ranked first in China’s terminal security market. China’s EDR market share and product strategy are both leading; and it has passed the threat detection capability test of SECAD Laboratory for three consecutive years, and its protection capability has reached the international advanced level.
It is reported that CDM is one of the most prestigious network security professional media in the world. It has been committed to searching for innovative professional information security products and services around the world, and screening the most innovative and cutting-edge network security companies in the world. . Every year, the “Global InfoSec Awards” series of awards are awarded for the most advanced and innovative security products with the highest technological content.
