January 30, 2024 at 03:35PM The US government, with private sector collaboration, has been discreetly working to disrupt the dangerous China-linked threat group “Volt Typhoon,” attempting to disable the operation remotely. This action comes amidst concern about widespread hacking activities and the group’s potential to compromise US military operations and infrastructure in the Indo-Pacific region. … Read more
January 30, 2024 at 01:24PM The US Justice Department and FBI reportedly thwarted Chinese state-sponsored hackers targeting American critical infrastructure by obtaining a court order to remotely disable aspects of the Chinese hacking campaign. The hackers used vulnerable Internet-facing devices to access networks and steal sensitive data, prompting concerns about potential disruption of US critical … Read more
January 30, 2024 at 09:42AM The US government has disrupted parts of a major hacking campaign linked to China, targeting critical infrastructure. The FBI and Justice Department have been authorized to disable aspects of a Chinese cyber operation called Volt Typhoon. This threat actor has reportedly targeted the US, UK, and Australia, leading to concerns … Read more
January 11, 2024 at 10:41AM Chinese state-sponsored hackers are targeting government entities in the US, UK, and Australia by exploiting old vulnerabilities in Cisco routers, reports SecurityScorecard. The actors likely compromised one-third of observed vulnerable devices and may operate a much larger botnet than previously believed, as indicated by connections to government sites. The attacks … Read more
December 15, 2023 at 09:54AM A new botnet named KV-botnet, compromising firewalls and routers from various manufacturers, is used for covert data transfer by advanced persistent threat actors, particularly the China-linked threat actor Volt Typhoon. The botnet’s two clusters target high-profile victims and utilize IP addresses based in China. The operators also focus on removing … Read more
December 14, 2023 at 05:20PM Lumen’s Black Lotus Labs recently identified the KV-Botnet, a sophisticated Internet of Things (IoT) botnet targeting US government and communications organizations. The botnet infects network devices from various vendors and is connected to the Chinese state-aligned Volt Typhoon threat actor. It features advanced stealth mechanisms and the ability to deploy … Read more
December 13, 2023 at 05:50PM The Chinese state-sponsored hacking group Volt Typhoon, also known as Bronze Silhouette, has been linked to the sophisticated botnet ‘KV-botnet’ since 2022. The group targets SOHO routers, firewalls, and VPN devices, aiming to disrupt critical communications infrastructure. The botnet’s activities indicate a focus on espionage and information gathering, with recent … Read more
October 25, 2023 at 12:16PM Chinese hacking group Volt Typhoon has shifted its focus to targeting critical infrastructure installations, according to Mandiant Intelligence’s John Hultquist. The group, known for economic espionage and IP theft, has been conducting deliberate, long-term infiltration attempts below the radar. Experts have raised concerns, with Microsoft noting the potential for disruption … Read more