China-backed attacks threaten critical infrastructure, warns CISA-led cybersecurity advisory

1 min read

A recent cybersecurity advisory warns that a Chinese-sponsored cyberthreat group called Volt Typhoon is targeting critical infrastructure sectors in the U.S., including communications, utilities, energy, and transportation. The advisory, issued by the Cybersecurity and Infrastructure Security Agency (CISA), along with the NSA, FBI, and similar departments from the United Kingdom, Australia, Canada, and New Zealand, highlights Volt Typhoon’s use of “living off the land” techniques to compromise the systems of critical infrastructure entities. The advisory provides guidance for detecting and mitigating Volt Typhoon’s activities, including deploying patches for vulnerable software and reporting any suspected activity to CISA or the FBI.

CISA Director Jen Easterly emphasized the seriousness of the Chinese cyber threat, stating that while CISA has already identified and eliminated Volt Typhoon intrusions into critical infrastructure, there is likely much more activity that remains undetected. Easterly urged all critical infrastructure organizations to review and implement the recommended actions in the advisory and report any suspicious activity to CISA or the FBI.

Previous Story

Federal contractors face backlash over stricter cyber reporting regulations

Next Story

Chinese hackers infiltrate US infrastructure systems, undetected for a whopping five years

Latest from News

US sanctions Kaspersky Lab for Russia ties

TLDR: The Biden administration announced sanctions against 12 executives and senior leaders of Kaspersky Lab, a Russia-based cybersecurity company. The Commerce Department banned Kaspersky