12 01 2024
Microsoft reported on Wednesday that state-backed Chinese hackers have been targeting critical infrastructure in the United States, potentially laying the technical groundwork for disrupting vital communications between the U.S. and Asia in future crises. According to the company, these targets include sites in Guam, where the U.S. maintains a significant military presence.
Cyber activities, ranging from espionage to the strategic placement of malware for potential future attacks, have become a defining aspect of contemporary geopolitical competition.
Identified as Volt Typhoon, the state-sponsored hacking group has been active since mid-2021, Microsoft stated in a blog post. The targeted organizations span various sectors such as communications, manufacturing, utilities, transportation, construction, maritime, information technology, and education. The goal of the hacking, which aims to establish persistent access, emphasizes stealth, with an emphasis on blending into regular network activities by targeting small-office network equipment like routers.
Additionally, a joint advisory from the National Security Agency, the FBI, the Cybersecurity and Infrastructure Security Agency (CISA), and international counterparts shared technical details on this cluster of activities. While Microsoft did not specify the reason for the announcement timing or confirm any recent increase in targeting of critical infrastructure in Guam or adjacent U.S. military facilities, it highlighted the importance of network mitigation to prevent potential disruption.
CISA Director Jen Easterly underscored the need for action to safeguard affected networks, describing China’s cyber operations as aggressive and aimed at stealing intellectual property and sensitive data globally. Bryan Vorndran, Assistant Director of the FBI Cyber Division, condemned the intrusions as unacceptable tactics in the same statement.
This post is based on information of AOL
https://www.aol.com/microsoft-state-sponsored-chinese-hackers-221557018.html