Most of the attack infrastructure and tools used in attacks by Hidden Lynx appear to be hosted China. According to Haley, there is not much evidence to suggest that Hidden Lynx is state sponsored. In fact, at least some of the hacking group's victims appear to be based in China.
Rather, members of Hidden Lynx tend to be more hackers-for-hire. The broad range of information and companies they have targeted in the past suggest that the group simply executes tasks on behalf of paying clients. "They are likely tasked with obtaining very specific information that could be used to gain competitive advantages at both a corporate and nation state level," the Symantec report said.
Hidden Lynx itself is unlikely to be using any of the information it steals, Symantec said. "Their mode of operation would suggest that they may be a private organization of 'hackers for hire', who are highly skilled, experienced professionals whose services are available for those willing to pay."
Jaikumar Vijayan covers data security and privacy issues, financial services security and e-voting for Computerworld. Follow Jaikumar on Twitter at @jaivijayan or subscribe to Jaikumar's RSS feed. His e-mail address is firstname.lastname@example.org.
Read more about cybercrime and hacking in Computerworld's Cybercrime and Hacking Topic Center.