August 27, 2024 at 10:05AM Chinese hacking group Volt Typhoon exploited a zero-day vulnerability in Versa Director to upload a destructive webshell, allowing them to steal credentials and breach corporate networks. Versa has released an advisory outlining impacted versions and the recommended upgrade to fix the issue. Lumen’s Black Lotus Labs identified the exploit and … Read more
August 23, 2024 at 03:51PM Pluralsight unveiled an expert-led course series targeting the sophisticated and persistent state-sponsored cyber group, Volt Typhoon. Directed towards cybersecurity professionals, the series equips learners with tactics and skills to detect and defend against cyberattacks on critical infrastructure. The course path includes seven expert-led courses and six hands-on lab experiences. Sign … Read more
July 14, 2024 at 08:12PM The interim CEO of the UK’s National Cyber Security Centre (NCSC) criticizes China’s cyber activities, highlighting concerns about the Beijing-backed Volt Typhoon gang’s attacks and China’s approach to vulnerability reporting. AWS China denies rumors of business trouble and declares good growth momentum. Japanese scientists believe they’ve spotted remnants of a … Read more
May 9, 2024 at 01:52PM Former NSA cyber boss Rob Joyce described digital intrusions into US water systems by China, Russia, and Iran as a “wake-up call.” Despite minimal impact, the attacks highlight the potential dangers of global tensions and the involvement of hacktivists linked to government intelligence services. The vulnerabilities in critical infrastructure underscore … Read more
March 20, 2024 at 02:30AM The EPA has formed a “Water Sector Cybersecurity Task Force” to address cyber threats to water systems. EPA Administrator and the National Security Advisor emphasize the need to secure water and wastewater systems from cyber attacks. CISA has warned of the “urgent risk posed by Volt Typhoon” targeting critical infrastructure. … Read more
March 19, 2024 at 04:25PM U.S. and partner cybersecurity agencies issued warnings against the Chinese hacking group, Volt Typhoon, targeting critical infrastructure. They provided defense tips and urged infrastructure leaders to empower their cybersecurity teams. The group has breached U.S. critical infrastructure, posing risks of disruption during military conflicts. Additionally, FBI disrupted the group’s botnet. … Read more
February 26, 2024 at 05:25PM Summary: CISA, NSA, and FBI warn of U.S. critical infrastructure attacks by “Volt Typhoon,” linked to CCP. Fortress Information Security partners with power companies to mitigate exposure, offering File Integrity Assurance (FIA) for compliance with CIP standards. Research reveals high likelihood of vulnerabilities in software from Russia or China, emphasizing … Read more
February 20, 2024 at 09:03AM The industrial cybersecurity firm Dragos has identified Volt Typhoon, a hacker group linked to the Chinese government, as a serious threat to organizations using industrial control systems (ICS) or operational technology (OT). The group’s cyberespionage activities and potential for disruption in critical infrastructure are highlighted in Dragos’ 2023 ICS/OT Cybersecurity … Read more
February 14, 2024 at 04:05PM Chinese government’s Volt Typhoon spy team has compromised a US city’s emergency services network and is targeting American telecom providers alongside ongoing reconnaissance of electric companies. Dragos CEO Robert Lee expressed concern over the strategic nature of the targets. The espionage extends to African electric providers, and the spies have … Read more
February 7, 2024 at 06:20PM CISA’s report reveals that the China-backed Volt Typhoon APT is targeting critical infrastructure, pivoting to operational technology networks. Concerns arise over potential disruption in the event of geopolitical tensions. The APT has remained undetected in US infrastructure for five years, using legitimate accounts and LOTL techniques. It also targets Australian, … Read more