#ChineseHackers – Page 2

US says Chinese hackers breached multiple telecom providers

October 28, 2024 by Xynik

October 28, 2024 at 12:09PM The FBI and CISA reported that Chinese hackers breached U.S. telecommunications providers, prompting investigations and alerts to affected entities. Emphasizing collaboration to mitigate threats, the U.S. government encourages potentially compromised organizations to report incidents. Canada also detected cyber scans by Chinese threat actors targeting government and democratic institutions, urging enhanced … Read more

Salt Typhoon APT Subverts Law Enforcement Wiretapping: Report

October 7, 2024 by Xynik

October 7, 2024 at 04:06PM The Chinese state-sponsored APT, Salt Typhoon, reportedly breached major US broadband provider networks, gaining access to lawful intercept infrastructure used by law enforcement for wiretapping. The affected providers include AT&T, Verizon, and Lumen Technologies. Sources suggest the APT had access to internet traffic and targeted entities outside the US. This … Read more

AT&T, Verizon reportedly hacked to target US govt wiretapping platform

October 7, 2024 by Xynik

October 7, 2024 at 10:56AM Multiple U.S. broadband providers, including Verizon, AT&T, and Lumen Technologies, were breached by the Chinese hacking group Salt Typhoon. The attack aimed at gathering intelligence from systems used by the U.S. federal government for network wiretapping requests. This sophisticated group has also targeted entities in other countries and utilizes various … Read more

China’s Salt Typhoon cyber spies are deep inside US ISPs

September 25, 2024 by Xynik

September 25, 2024 at 05:51PM A new Beijing-linked cyber espionage group called Salt Typhoon has breached US internet service providers, possibly preparing for future cyber attacks, according to The Wall Street Journal. This follows a similar intrusion by a different Chinese group, Flax Typhoon, targeting critical infrastructure. Experts suggest these activities are part of a … Read more

US Disrupts ‘Raptor Train’ Botnet of Chinese APT Flax Typhoon

September 19, 2024 by Xynik

September 19, 2024 at 06:15AM The US government disrupted a Chinese state-sponsored botnet named Raptor Train, created by Flax Typhoon. The botnet compromised over 260,000 devices, powering DDoS attacks and routing malware. Law enforcement operations successfully neutralized the botnet, despite attempted interference by the hackers. Five Eyes agencies issued a joint advisory and efforts continue … Read more

Chinese botnet infects 260,000 SOHO routers, IP cameras with malware

September 18, 2024 by Xynik

September 18, 2024 at 12:05PM The FBI and cybersecurity researchers have disrupted the massive Chinese botnet “Raptor Train,” which targeted critical infrastructure in the US and other countries, including entities in the military, government, education, and IT sectors. The botnet, employing multi-tier architecture, infected over 260,000 networking devices, primarily routers, modems, NVRs, DVRs, IP cameras, … Read more

VMware Patches Remote Code Execution Flaw Found in Chinese Hacking Contest

September 17, 2024 by Xynik

September 17, 2024 at 03:21PM VMware, owned by Broadcom, released critical-severity patches for two vulnerabilities in its vCenter Server. One vulnerability, CVE-2024-38812, poses a major risk of remote code execution, while the other, CVE-2024-38813, is a privilege escalation vulnerability. The flaws impact vCenter Server and Cloud Foundation versions, and patches are the only known solution. … Read more

Chinese hackers linked to cybercrime syndicate arrested in Singapore

September 11, 2024 by Xynik

September 11, 2024 at 09:47AM Seven individuals, including six Chinese nationals and one Singaporean, were arrested in Singapore for their involvement in global cyber activities. The arrests were made during raids where electronic devices with hacking tools, stolen personal information, and cash and cryptocurrencies totaling $1,394,000 were seized. The individuals are suspected of being part … Read more

Chinese hacking groups target Russian government, IT firms

August 11, 2024 by Xynik

August 11, 2024 at 12:28PM In late July 2024, a wave of cyberattacks targeted Russian government organizations and IT companies, with evidence pointing to Chinese hackers from APT31 and APT27 groups as the perpetrators. Based on the meeting notes, it seems that there have been targeted cyberattacks since the end of July 2024, which have … Read more

Chinese Hackers Target Taiwan and US NGO with MgBot Malware

July 23, 2024 by Xynik

July 23, 2024 at 09:31AM Taipei and U.S. NGOs targeted by state-affiliated Chinese hacking group Daggerfly, using upgraded malware tools. Symantec reports the group engages in internal espionage, exploits Apache HTTP server vulnerability, and quickly adapts to continue espionage activities. New malware linked to Daggerfly includes MACMA and Nightdoor, targeting major operating systems. CVERC accuses … Read more