Singapore Telecommunications was breached by Chinese state-sponsored hackers this summer as part of a broader campaign against telecommunications companies and other critical infrastructure operators around the world. https://www.japantimes.co.jp/news/2024/11/06/asia-pacific/crime-legal/chinese-hacking-singtel-telecom/ #asiapacific #crimelegal #china #hacking #telecoms #singapore #singtel #volttyphoon
#volttyphoon
0 posts0 participants0 posts today
Hackers infect ISPs with malware that steals customers’ credentials - Enlarge (credit: Getty Images)
Malicious hackers likely workin... - https://arstechnica.com/?p=2045401 #vulnerabilities #credentials #volttyphoon #security #exploits #zerodays #malware #biz #isps
Ars Technica · Hackers infect ISPs with malware that steals customers’ credentialsZero-day that was exploited since June to infect ISPs finally gets fixed.
Continued thread
Though they avoided discussing threats to ISPs specifically, some of the top #US #cybersecurity ofcls at the recent #BlackHat & #DefCon #hacking conferences said #VoltTyphoon remained as active & successful as it was when ops were first ID’ed last yr.
The group’s emphasis on obtaining access for potential physical destruction “is nowhere near where the nations of the world behave” said ret Gen Paul Nakasone, who stepped down in Feb from posts running US #Cyber Com & the #NSA.
Continued thread
In a separate report earlier this month, #security company #Volexity said it had found another high-end technique in play at a different, unnamed #ISP. In that case, it said a Chinese state #hacking group distinct from #VoltTyphoon was able to get far enough inside the service provider to alter #DNS web addresses that users were trying to reach & divert them elsewhere, allowing the #hackers to insert #backdoors for #espionage.
#InfoSec #Internet #tech #cybersecurity #China #US #geopolitics
Continued thread
On Mon, the Santa Clara, CA-based company published a blog post about the problem, saying that it had issued a patch & that “impacted customers failed to implement system hardening & #firewall guidelines.”
#Lumen wrote that it located #malware inside #ISP routers serving certain groups or individual customers that could intercept passwords from those customers. Lumen said it believed the malicious #software was being used by #VoltTyphoon.
Continued thread
Though there is no evidence that the new inroads are aimed at anything other than gathering #intelligence, some of the techniques & resources employed are associated w/those used in the past year by a #China-backed group known as #VoltTyphoon…. #US intelligence ofcls said that group sought access to equipment at Pacific #ports & other #infrastructure to enable China to sow #panic & #disrupt America’s ability to move #troops, #weaponry & supplies to #Taiwan if armed conflict breaks out.
#security
Cyberthreat landscape permanently altered by Chinese operations, US officials say
https://therecord.media/cyberthreat-landscape-altered-chinese-operations #china #hacking #VoltTyphoon #security
therecord.mediaCyberthreat landscape permanently altered by Chinese operations, US officials sayThe wide-ranging hacking campaign by the state-backed group Volt Typhoon is seen as a prelude of what's to come.
FBI chief says Chinese have infiltrated critical US infrastructure
Chinese government-linked hackers have burrowed into US critical infrastructure and are waiting “for just the right moment to deal a devastating blow”, the director of the FBI, Christopher Wray, has warned.
An ongoing Chinese hacking campaign known as #Volt #Typhoon has successfully gained access to numerous American companies in telecommunications, energy, water and other critical sectors, with 23 pipeline operators targeted, Wray said.
China is developing the “ability to physically wreak havoc on our #critical #infrastructure at a time of its choosing”, Wray said at the 2024 Vanderbilt summit on modern conflict and emerging threats.
He added: “Its plan is to land low blows against civilian infrastructure to try to induce #panic.”
Wray said it was difficult to determine the intent of this cyber pre-positioning, which was aligned with China’s broader intent to deter the US from defending Taiwan.
China claims democratically governed Taiwan as its own territory and has never renounced the use of force to bring the island under its control. Taiwan strongly objects to China’s sovereignty claims and says only the island’s people can decide their future.
Earlier this week, a Chinese ministry of foreign affairs (MFA) spokesperson said Volt Typhoon was in fact unrelated to China’s government, but was part of a criminal #ransomware group.
#VoltTyphoon #hacking
https://www.theguardian.com/world/2024/apr/19/fbi-china-hack-infrastructure?CMP=Share_iOSApp_Other
The Guardian · FBI chief says Chinese hackers have infiltrated critical US infrastructure
US is still chasing down pieces of Chinese hacking operation, NSA official says
https://therecord.media/china-hacking-volt-typhoon-response-nsa-rob-joyce #US #china #cybercrime #hacking #infrastructure #VoltTyphoon #NSA
therecord.mediaUS is still chasing down pieces of Chinese hacking operation, NSA official saysFederal agencies are “not done with efforts to uncover or eradicate” threats created by the Chinese group known as Volt Typhoon, says Rob Joyce, the outgoing director of the NSA’s Cybersecurity Directorate.
Hackers backed by Russia and China are infecting SOHO routers like yours, FBI warns - Enlarge (credit: Getty Images)
The FBI and partners from 10 ot... - https://arstechnica.com/?p=2006319 #volttyphoon #security #routers #biz #apt28
Ars Technica · Hackers backed by Russia and China are infecting SOHO routers like yours, FBI warnsSix years on, routers remain a favorite post for concealing malicious activities.
As China Expands Its Hacking Operations, a Vulnerability Emerges - New revelations underscore the degree to which China has ignored, or evaded, U.S. efforts... - https://www.nytimes.com/2024/02/22/us/politics/china-hacking-files-risk.html #classifiedinformationandstatesecrets #espionageandintelligenceservices #infrastructure(publicworks) #volttyphoon(hackinggroup) #computersandtheinternet #cyberwarfareanddefense #internationalrelations #cyberattacksandhackers #industrialespionage #china
The New York Times · As China Expands Its Hacking Operations, a Vulnerability Emerges
US confirms takedown of China-run botnet targeting home and office routers
https://therecord.media/china-run-botnet-takedown-fbi-doj-routers #china #govt #hackers #botnet #VoltTyphoon #USDoJ #home #office #routers #ChristopherWray
therecord.mediaUS confirms takedown of China-run botnet targeting home and office routersThe Department of Justice and FBI Director Christopher Wray confirmed a Reuters report about federal action against a China-run hacking group known as Volt Typhoon.
#FBI says they shut down #hacker group #VoltTyphoon who is accused of attacking #US infrastructure, like power grid and pipe lines.
BBC reports: https://www.bbc.co.uk/news/world-asia-68163172
BBC connects this to a warning issued last year by Microsoft, claiming Volt Typhoon had hacked into multiple US government email accounts.
BBC NewsFBI says Chinese state hacker group targeted US infrastructureChina is targeting US infrastructure and laying the groundwork to wreak chaos, the FBI director warns.
#FBI operation shut down the router botnet used by #VoltTyphoon, Wray testifies. But the Chinese operation has other ways into critical infrastructure. Our story, free link: https://wapo.st/3OnNB7W
The Washington Post · FBI says it’s shut down sources of recent Chinese infrastructure hacks
A pervasive Chinese hacking group dubbed "Volt Typhoon" has alarmed intelligence officials, who say it is part of a larger effort to compromise Western critical infrastructure. https://www.japantimes.co.jp/news/2024/01/31/asia-pacific/crime-legal/volt-typhoon-china-hacking/?utm_content=buffer17616&utm_medium=social&utm_source=mastodon&utm_campaign=bffmstdn #asiapacific #crimelegal #china #us #hacking #volttyphoon #taiwan
The Japan Times · What is Volt Typhoon, the alleged China-backed hacking group?