For decades, adversaries of the United States have attempted to hack into DoD network systems. The main adversaries are constantly trying to steal sensitive military secrets and gain economic advantage over the United States and other nations. If access to a network is accomplished, malware is installed and valuable information is forwarded to the hackers. The following organizations: Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the DoD have recently discovered a malware called TAIDOOR linked to the Chinese government.
Although the malware TAIDOOR has existed since 2008, this is a new variant. Once installed, the malware becomes a Remote Access Trojan. Another name for this malware is “Taurus RAT.” Remote Access Trojans are deceitful sets of attacker tools that invade our systems, data and privacy; TAIDOOR is a persisted threat that is constantly evolving. Because system administrators are performing remote access in large amounts, it is easier for malware such as TAIDOOR to remain unnoticed for an extended period of time.