{"id":25839,"date":"2019-03-04T16:44:28","date_gmt":"2019-03-04T16:44:28","guid":{"rendered":"http:\/\/9cf559d8-5f06-42eb-ba18-5164a07cfda6"},"modified":"2019-03-04T16:44:28","modified_gmt":"2019-03-04T16:44:28","slug":"chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/","title":{"rendered":"Chinese hackers use phishing emails to target engineering, transport and defence companies"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/zdnet2.cbsistatic.com\/hub\/i\/r\/2017\/10\/16\/f4ac7a82-3e06-48d8-bcd8-8fad38e9b250\/thumbnail\/770x578\/7621711503f36f67a624b5372516f922\/istock-cargo-ship.jpg\" class=\"ff-og-image-inserted\"\/><\/div>\n<p>High profile organisations in engineering, transportation and defence industries particularly with links to the maritime sector, are being targeted by a state-backed Chinese hacking operation, according to security company researchers.<\/p>\n<p>The cyber espionage campaign has been detailed by security company FireEye, which has labelled the group Advanced Persistent Threat (APT) 40 \u2013 or more colloquially, Periscope.<\/p>\n<p>The group has been active since at least January 2013. The main targets seem to be US companies in engineering, transport and defence \u2013 although it has targeted other organisations around the world. The group has also targeted university research departments focused on maritime issues, something researchers believe to be linked to China&#8217;s desire to build up its navy.<\/p>\n<p>The group has also targeted businesses operating in the South China Sea \u2013 a strategically important region and the focus of disputes between China and other states.<\/p>\n<p>The way the group selects its targets plus other factors have led FireEye to state with &#8220;high confidence&#8221; that the APT40 activity is\u00a0 a state-backed cyber espionage group. The times of day the group is active also suggests that it&#8217;s based near Beijing and the group has reportedly used malware which has been observed in other Chinese operations, indicating some level of collaboration.<\/p>\n<p><strong>SEE:<\/strong> <a href=\"https:\/\/www.zdnet.com\/article\/cyberwar-predictions-for-2019-the-stakes-have-been-raised\/\"><strong>Cyberwar predictions for 2019: The stakes have been raised<\/strong><\/a><\/p>\n<p>The researchers also note that the targeting of maritime, engineering and transportation industries tie in with China&#8217;s &#8216;Belt and Road Initiative&#8217; which aims to develop Chinese infrastructure in countries around the world.<\/p>\n<section class=\"sharethrough-top\" data-component=\"medusaContentRecommendation\" data-medusa-content-recommendation-options=\"{&quot;promo&quot;:&quot;promo_ZD_recommendation_sharethrough_top_in_article_desktop&quot;,&quot;spot&quot;:&quot;dfp-in-article&quot;}\">\n<\/section>\n<p>Countries including Cambodia, Belgium, Germany, Hong Kong, Philippines, Malaysia, Norway, Saudi Arabia, Switzerland, the US, and the UK, have all been targeted in attacks, warn researchers.<\/p>\n<p>Periscope&#8217;s activity has <a href=\"https:\/\/www.fireeye.com\/blog\/threat-research\/2018\/03\/suspected-chinese-espionage-group-targeting-maritime-and-engineering-industries.html\" target=\"_blank\" rel=\"noopener noreferrer\">previously<\/a> <a href=\"https:\/\/www.fireeye.com\/blog\/threat-research\/2018\/03\/suspected-chinese-espionage-group-targeting-maritime-and-engineering-industries.html\" target=\"_blank\" rel=\"noopener noreferrer\">been suspected of being linked to China<\/a>, but now FireEye has built up a case which they believe almost certainly links the operation to the Chinese state.<\/p>\n<p>APT40 is described a &#8220;moderately sophisticated cyber espionage group&#8221; which combines access to &#8220;significant&#8221; development resources with the ability to <a href=\"https:\/\/www.zdnet.com\/article\/security-warning-attackers-are-using-these-five-hacking-tools-to-target-you\/\">leverage publicly available tools<\/a> which have <a href=\"https:\/\/www.zdnet.com\/article\/free-easy-to-use-and-available-to-anyone-the-powerful-malware-hiding-in-plain-sight-on-the-open-web\/\">become a staple for some hacking groups<\/a>, as they can make it easier to hide hacking activity.<\/p>\n<p>Like many espionage campaigns, much of APT40&#8217;s activity begins by attempting to trick targets with <a href=\"https:\/\/www.zdnet.com\/article\/what-is-phishing-how-to-protect-yourself-from-scam-emails-and-more\/\" target=\"_blank\">phishing emails<\/a>, before deploying malware such as <a href=\"https:\/\/www.zdnet.com\/article\/espionage-malware-snoops-for-passwords-mines-bitcoin-on-the-side\/\">the Gh0st RAT trojan<\/a> to maintain persistence on a compromised network.<\/p>\n<p>The group has also uses website and web server compromise as a means of attack and is able to leverage what&#8217;s described as an &#8220;enormous&#8221; library of tools as part of campaigns, including exploits taking advantage of known CVE software vulnerabilities.<\/p>\n<p>Once inside a network, APT40 uses credential harvesting tools to gain usernames and passwords, allowing it to expand its reach across the network and move laterally through an environment as it moves to towards the ultimate goal of stealing data.<\/p>\n<p>Despite the main goal of the campaign being espionage, researchers note that that APT40 remains active despite <a href=\"https:\/\/www.zdnet.com\/article\/cyber-security-hackers-step-out-of-the-shadows-with-bigger-bolder-attacks\/\">increasing attention being placed upon its activities<\/a> and that the group will continue to be so for some time to come.<\/p>\n<p>The report on APT40 concludes with a warning: the group will look to extend its activity into additional sectors which are seen to be important for the Belt and Road initiative, so this is unlikely to be the last they are heard from.<\/p>\n<p><strong>READ MORE ON CYBER CRIME<\/strong><\/p>\n<p>READ MORE <a href=\"https:\/\/www.zdnet.com\/article\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/#ftag=RSSbaffb68\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Researchers at FireEye detail operations by a hacking group targeting firms as part of long-running espionage campaign.<br \/>\nREAD MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":25840,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[62],"tags":[],"class_list":["post-25839","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-zdnet-security"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Chinese hackers use phishing emails to target engineering, transport and defence companies 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Chinese hackers use phishing emails to target engineering, transport and defence companies 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-03-04T16:44:28+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"770\" \/>\n\t<meta property=\"og:image:height\" content=\"578\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Chinese hackers use phishing emails to target engineering, transport and defence companies\",\"datePublished\":\"2019-03-04T16:44:28+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/\"},\"wordCount\":563,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg\",\"articleSection\":[\"ZDNet | Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/\",\"name\":\"Chinese hackers use phishing emails to target engineering, transport and defence companies 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg\",\"datePublished\":\"2019-03-04T16:44:28+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/03\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg\",\"width\":770,\"height\":578},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Chinese hackers use phishing emails to target engineering, transport and defence companies\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Chinese hackers use phishing emails to target engineering, transport and defence companies 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/","og_locale":"en_US","og_type":"article","og_title":"Chinese hackers use phishing emails to target engineering, transport and defence companies 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-03-04T16:44:28+00:00","og_image":[{"width":770,"height":578,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Chinese hackers use phishing emails to target engineering, transport and defence companies","datePublished":"2019-03-04T16:44:28+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/"},"wordCount":563,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg","articleSection":["ZDNet | Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/","url":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/","name":"Chinese hackers use phishing emails to target engineering, transport and defence companies 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg","datePublished":"2019-03-04T16:44:28+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/03\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies.jpg","width":770,"height":578},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/chinese-hackers-use-phishing-emails-to-target-engineering-transport-and-defence-companies\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Chinese hackers use phishing emails to target engineering, transport and defence companies"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/25839","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=25839"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/25839\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/25840"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=25839"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=25839"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=25839"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}