Volt Typhoon
Also known as: Bronze Silhouette, Vanguard Panda, INSIDIOUS TAURUS
Chinese state-sponsored. Pre-positioning in US critical infrastructure. Living-off-the-land.
Associated Intelligence
Chinese APTs Use Linux Backdoor
Chinese Advanced Persistent Threats (APTs) have been using a
Palo Alto Zero-Day Exploited
A zero-day vulnerability in Palo Alto products has been exploited in a campaign suspected to be linked to Chinese state-sponsored hacking. Organizations using Palo Alto security solutions may be affected and should take action to patch and monitor their systems. The campaign's tactics suggest a sophisticated threat actor.
Lotus Wiper Malware Targets Energy
A recent analysis of the Lotus Wiper malware has revealed its use of sophisticated living-off-the-land (LotL) techniques to target Venezuelan energy firms and utilities, resulting in widespread data deletion. The malware's tactics, techniques, and procedures (TTPs) indicate a high level of planning and execution. Organizations in the energy sector should be vigilant and take proactive measures to protect against similar attacks.
China-Linked Threat Actors Use Comp
China-linked threat actors are using compromised edge devices, such as routers, to build large-scale covert networks for cyber espionage operations. Organizations of all sizes are affected and should take action to map and baseline traffic from these devices. The National Cyber Security Centre has issued an advisory with guidance on how to address this threat.
China-Linked Actors Compromise Routers
A joint advisory from
China Hackers Use Proxy Networks
The UK's National Cyber Security Centre (NCSC-UK) has warned that China-linked hackers are using large-scale proxy networks to evade detection. This tactic allows them to disguise their malicious activity, potentially affecting organizations worldwide. Users should be cautious of unusual network activity and monitor for signs of proxy network usage.
China-Linked Covert Networks
The UK's National Cyber Security Centre (NCSC) warns of China-nexus covert networks
China-Nexus Covert Networks
China-nexus cyber actors have shifted their
China-Linked Covert Networks
The UK's National Cyber Security Centre (NCSC) warns of a shift in
China-Linked Cyber Threats
The UK's National Cyber Security Centre (NCSC) has issued a new advisory on defending against tactics used by China-linked actors to conceal malicious cyber activity. These
UK Faces Sophisticated Cyber Threats
The UK National Cyber Security Centre (NCSC) warns of highly sophisticated state-sponsored cyberattacks from Chinese intelligence and military agencies, posing a significant threat to Britain's cyber defenses. These attacks are not limited to financial gain, but also aim to cause harm and disrupt critical infrastructure. Organizations are advised to reassess their cybersecurity measures and avoid relying solely on the cheapest contractors.