Typhoon
-
Blog
Wyden proposes bill to secure US telecoms after Salt Typhoon hacks
U.S. Senator Ron Wyden of Oregon announced a new bill to secure the networks of American telecommunications companies breached by Salt Typhoon Chinese state hackers earlier this year. Wyden’s “Secure American Communications Act” will order the Federal Communications Commission (FCC) to issue binding cybersecurity rules and implement the security requirements demanded since 1994 by legislation that instructs telecom providers to…
Read More » -
Blog
Salt Typhoon hacker group recorded conversations of ‘very senior’ US political figures
A senior Whitehouse security official has confirmed that Chinese hackers were able to record telephone conversations of “very senior” American political figures. Anne Neuberger, President Biden’s national security advisor for cyber and emerging technology, provided an update to reporters at the Manama Dialogue security conference in Bahrain on the extent of a campaign targeting telcos in the region. The campaign…
Read More » -
Blog
Salt Typhoon hacked telcos in dozens of countries
Chinese state hackers, known as Salt Typhoon, have breached telecommunications companies in dozens of countries, President Biden’s deputy national security adviser Anne Neuberger said today. During a Wednesday press briefing, the White House official told reporters that these breaches include a total of eight telecom firms in the United States, with only four previously known. While these attacks have been…
Read More » -
Blog
Salt Typhoon hackers backdoor telcos with new GhostSpider malware
The Chinese state-sponsored hacking group Salt Typhoon has been observed utilizing a new “GhostSpider” backdoor in attacks against telecommunication service providers. The backdoor was discovered by Trend Micro, which has been monitoring Salt Typhoon’s attacks against critical infrastructure and government organizations worldwide. Along with GhostSpider, Trend Micro discovered that the threat group also uses a previously documented Linux backdoor named…
Read More » -
Blog
The infamous Volt Typhoon hacker group is back
A botnet operated by the Volt Typhoon threat group, used to target critical national infrastructure around the world, has reappeared after being severely disrupted earlier this year, according to a new report. The network of compromised network devices, orchestrated by the Chinese state-affiliated threat collective, consisted of hundreds of US-based small office/home office (SOHO) routers, and was used to attack…
Read More » -
Blog
Volt Typhoon Hackers Exploit Zero-Day Vulnerability in Versa Director Servers Used by MSPs, ISPs
Volt Typhoon, a Chinese state-sponsored hacking group, has been caught exploiting a zero-day vulnerability in Versa Director servers, used by managed service providers and internet service providers. CVE-2024-39717 was added to CISA’s “Known Exploited Vulnerabilities Catalog” on Aug. 23 after Lumen Technologies discovered its active exploitation. Data from Censys shows that there are 163 devices in the U.S., Philippines, Shanghai,…
Read More » -
Blog
Volt Typhoon is wreaking havoc again – this time on US internet providers
Hackers exploited a high severity zero-day vulnerability in a popular network configuration tool in order to gain access to four internet providers in the US, according to a new report. Lumen Technologies’ Black Lotus Labs team issued a report on 27 August detailing its discovery of active exploitation of a flaw in servers running Versa Networks’ Director software, linking the…
Read More »