November 19, 2024 at 11:31AM T-Mobile USA has confirmed being targeted by the Chinese cyber threat group Salt Typhoon, part of a larger espionage campaign affecting multiple telecoms. While T-Mobile found no evidence of data breaches, federal agencies report sensitive information may have been accessed. Experts warn of further attacks and cybersecurity vulnerabilities. ### Meeting … Read more
November 1, 2024 at 04:02PM Chinese threat actors have significantly advanced their cyberattack strategies, particularly targeting edge devices. Since 2018, tactics evolved from basic attacks to sophisticated, targeted efforts against high-value organizations. Their recent focus is on stealth and persistence, utilizing advanced malware and exploiting vulnerabilities, demonstrating increased capability in overcoming cybersecurity defenses. ### Meeting … Read more
May 23, 2024 at 07:36AM Chinese APT group targets governmental entities in the Middle East, Africa, and Asia in cyber espionage campaign dubbed Operation Diplomatic Specter since late 2022. Palo Alto Networks researchers found long-term espionage operations and rare email exfiltration techniques. The attacks include diplomatic and economic missions, embassies, military operations, political meetings, and … Read more
February 22, 2024 at 04:44PM Leaked documents expose collaboration between the Chinese government and the private sector firm iSoon in conducting cyber espionage on foreign entities, domestic dissidents, and ethnic minorities. The company’s operations, target list, rates charged, and use of known malware have been revealed. The documents also shed light on internal dynamics and … Read more
January 22, 2024 at 05:12PM A critical VMware vulnerability, CVE-2023-34048, was exploited by a Chinese APT, UNC3886, since late 2021 as a zero-day. The group utilized this to gain remote code-execution capabilities and compromise ESXi hosts. Organizations must ensure patching was effective, as many may still be vulnerable due to various challenges in deploying patches. … Read more
December 11, 2023 at 11:08AM Researchers have linked the Sandman threat group, known for cyberattacks on telecom providers, to a growing network of Chinese government-backed advanced persistent threat (APT) groups. This assessment by Microsoft, SentinelLabs, and PwC reveals shared practices and overlaps in malware development, emphasizing the need for collaboration within the cybersecurity community. From … Read more