[Shocking] Big Energy Company is infected by the ASPX Spy shell

A power company which is innovative in power, control technologies and precision power conversion solutions has been infected by the Chinese ASPX Spy backdoor. We will not disclose the name of the company, as they are still working on the removal of the Chinese ASPX Spy backdoor which has infected their webapplication.

The Energy Company is active in various countries. This allows the hackers to navigate through the connected countries networks. The company is a NASDAQ company and it offers global sales and support through direct offices, representatives, and distributors.

The company has locations in the following areas:

  • North America
  • Asia
  • Europe
  • United States
  • Canada
  • China
  • Korea

ASPX Spy shell source code

Chinese ASPX Spy backdoor found on active Energy Company website
Chinese ASPX Spy backdoor found on active Energy Company website

We decided to take a look at the source code of the ASPX Spy shell infected company. In the header of the source code you will see that they mention the name ‘ASPXspy’. This is why, we believe that this is the ASPX Spy backdoor.

Chinese ASPX Spy backdoor source code
Chinese ASPX Spy backdoor source code

We have informed the company about this breach.