Typhoon

  • Blog

    The infamous Volt Typhoon hacker group is back

    A botnet operated by the Volt Typhoon threat group, used to target critical national infrastructure around the world, has reappeared after being severely disrupted earlier this year, according to a new report. The network of compromised network devices, orchestrated by the Chinese state-affiliated threat collective, consisted of hundreds of US-based small office/home office (SOHO) routers, and was used to attack…

    Read More »
  • Blog

    Volt Typhoon Hackers Exploit Zero-Day Vulnerability in Versa Director Servers Used by MSPs, ISPs

    Volt Typhoon, a Chinese state-sponsored hacking group, has been caught exploiting a zero-day vulnerability in Versa Director servers, used by managed service providers and internet service providers. CVE-2024-39717 was added to CISA’s “Known Exploited Vulnerabilities Catalog” on Aug. 23 after Lumen Technologies discovered its active exploitation. Data from Censys shows that there are 163 devices in the U.S., Philippines, Shanghai,…

    Read More »
  • Blog

    Volt Typhoon is wreaking havoc again – this time on US internet providers

    Hackers exploited a high severity zero-day vulnerability in a popular network configuration tool in order to gain access to four internet providers in the US, according to a new report. Lumen Technologies’ Black Lotus Labs team issued a report on 27 August detailing its discovery of active exploitation of a flaw in servers running Versa Networks’ Director software, linking the…

    Read More »
Back to top button
close