THN Cybersecurity Recap: Last Week’s Top Threats and Trends (September 16-22)

September 23, 2024 at 08:06AM The past week’s cybersecurity landscape was a rollercoaster ride. Notable events include the dismantling of the Raptor Train botnet, North Korean hackers deploying a new malware, takedown of criminal networks iServer and Ghost, and developments in the Apple vs. NSO Group lawsuit. These incidents underscore the evolving nature of cyber … Read more

FBI Leads Takedown of Chinese Botnet Impacting 200K Devices

September 19, 2024 at 12:07PM The Justice Department recently conducted a court-authorized operation to disrupt a botnet, Raptor Train, affecting 200,000 devices in the US and abroad. Operated by People’s Republic of China state-sponsored hackers, the botnet targeted a variety of devices. The takedown was a joint effort involving various entities. Users concerned about compromised … Read more

US Disrupts ‘Raptor Train’ Botnet of Chinese APT Flax Typhoon

September 19, 2024 at 06:15AM The US government disrupted a Chinese state-sponsored botnet named Raptor Train, created by Flax Typhoon. The botnet compromised over 260,000 devices, powering DDoS attacks and routing malware. Law enforcement operations successfully neutralized the botnet, despite attempted interference by the hackers. Five Eyes agencies issued a joint advisory and efforts continue … Read more

Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military

September 18, 2024 at 01:09PM Lumen Technologies researchers have identified a large-scale botnet, Raptor Train, controlled by a Chinese state-sponsored espionage group known as Flax Typhoon. The botnet targets US and Taiwanese organizations in critical sectors using IoT devices and has a robust command and control infrastructure. The botnet has been used for extensive scanning … Read more

New “Raptor Train” IoT Botnet Compromises Over 200,000 Devices Worldwide

September 18, 2024 at 01:01PM Cybersecurity researchers uncover Raptor Train botnet operated by Chinese state threat actor Flax Typhoon. Consisting of compromised SOHO & IoT devices, it’s one of the largest Chinese IoT botnets, targeting devices from multiple manufacturers. Raptor Train has been linked to multiple campaigns and has been used for potential exploitation attempts … Read more

Chinese botnet infects 260,000 SOHO routers, IP cameras with malware

September 18, 2024 at 12:05PM The FBI and cybersecurity researchers have disrupted the massive Chinese botnet “Raptor Train,” which targeted critical infrastructure in the US and other countries, including entities in the military, government, education, and IT sectors. The botnet, employing multi-tier architecture, infected over 260,000 networking devices, primarily routers, modems, NVRs, DVRs, IP cameras, … Read more