Nation-State US Gov Agency Urges Employees to Limit Phone Use After China ‘Salt Typhoon’ Hack The US government's CFPB sent an email with a simple directive: “Do NOT conduct CFPB work using mobile voice calls or text messages.” SecurityWeek NewsNovember 8, 2024
Nation-State NCSC Details ‘Pygmy Goat’ Backdoor Planted on Hacked Sophos Firewall Devices A stealthy network backdoor found on hacked Sophos XG firewall devices is programmed to work on a broader range of Linux-based devices. Ryan NaraineNovember 1, 2024
Nation-State China-Linked Hackers Target Drone Makers A Chinese-speaking threat actor tracked as Tidrone has been targeting military and satellite industries in Taiwan. Ionut ArghireSeptember 10, 2024
Cyberwarfare China’s Volt Typhoon Hackers Caught Exploiting Zero-Day in Servers Used by ISPs, MSPs Malware hunters catch Chinese APT Volt Typhoon exploiting a zero-day in Versa Director servers used by ISPs and MSPs. Ryan NaraineAugust 26, 2024
Malware & Threats Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning Chinese group StormBamboo spotted delivering Windows and macOS malware by compromising an ISP and using DNS poisoning. Eduard KovacsAugust 5, 2024
Cyberwarfare Chinese Hacking Group APT41 Infiltrates Global Shipping and Tech Sectors, Mandiant Warns Chinese government-backed hacking team caught breaking into organizations in shipping, logistics and automotive sectors in Europe and Asia. Ryan NaraineJuly 18, 2024
Nation-State Chinese Hackers Have Stepped Up Attacks on Taiwanese Organizations, Cybersecurity Firm Says A suspected Chinese state-sponsored hacking group has stepped up its targeting of Taiwanese organizations, particularly those in sectors such as government, education, technology and... Associated PressJune 24, 2024
Malware & Threats Cyber Assault on Asian Telecoms Traced to Chinese State Hackers A years-long espionage campaign has targeted telecoms companies in Asia with tools associated with Chinese groups. Ionut ArghireJune 20, 2024
Malware & Threats Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence China-linked threat actor Velvet Ant leveraged a legacy F5 BIG-IP appliance for three-year access to a victim’s network. Ionut ArghireJune 18, 2024
Malware & Threats Multiple Chinese APTs Targeted Southeast Asian Government for Two Years Multiple Chinese state-sponsored groups have targeted a Southeast Asian government in a years-long cyberespionage campaign. Ionut ArghireJune 6, 2024
Incident Response VMware Abused in Recent MITRE Hack for Persistence, Evasion MITRE has shared information on how China-linked hackers abused VMware for persistence and detection evasion in the recent hack. Eduard KovacsMay 23, 2024
Nation-State Newly Detected Chinese Group Targeting Military, Government Entities Unfading Sea Haze has been targeting military and government entities in South China Sea countries since 2018. Ionut ArghireMay 23, 2024