March 20, 2024 at 06:21AM
The US government and international partners issued another warning about China’s Volt Typhoon cyber gang targeting critical infrastructure, advising protection measures. They emphasized guidance for non-technical senior leaders, urged cybersecurity best practices, and highlighted the importance of incident response plans and securing the supply chain. The advisory reiterated the gang’s expertise in using legitimate tools for cyber attacks.
The meeting notes outline the recent advisory issued by US and international partners warning about potential cyber attacks from China’s Volt Typhoon gang. The focus of the latest advisory is to provide guidance to non-technical senior business leaders. It recommends the use of intelligence-informed prioritization tools, such as Cybersecurity Performance Goals (CPGs) or guidance from Sector Risk Management Agencies (SRMAs). Additionally, the alert encourages cyber security best practices, incident response planning, and securing the supply chain. It emphasizes the need to manage vendor risks and adhere to strict security standards, including identifying and managing any foreign ownership, control, or influence. The advisory also highlights the importance of conducting regular tabletop exercises for incident response preparedness.