#USCyberThreats

US names Chinese national it alleges was behind 2020 attack on Sophos firewalls

by

December 11, 2024 at 12:06AM The US Treasury and Justice Departments have identified a Chinese firm and an employee, Guan Tianfeng, as responsible for exploiting a 2020 vulnerability in Sophos firewalls. An indictment claims they tested the firewalls to deliver malware, compromising 81,000 devices. Rewards and sanctions have been announced against them. ### Meeting Takeaways … Read more

US Sees Iranian Hackers Working Closely With Ransomware Groups

by

August 29, 2024 at 04:42AM Iranian state-sponsored hackers collaborate with ransomware groups to target US organizations since 2017. In a joint advisory, CISA, FBI, and DC3 state that the hackers assist the groups by providing network access for data encryption and extortion, receiving a ransom percentage. The hackers are associated with Pay2Key attacks, targeting Israel-based … Read more