TLDR:
- Five Eyes agencies issue alert on Chinese APT group, Volt Typhoon, targeting critical infrastructure
- Advisory provides guidance on defending against the threat, including empowering cybersecurity teams and securing the supply chain
Government agencies in the US, UK, Canada, Australia, and New Zealand have issued a warning to critical infrastructure entities about the threat posed by the Chinese state-sponsored hacking group, Volt Typhoon. The group has successfully hacked organizations worldwide, including US communications, energy, transportation systems, and water organizations. The advisory recommends empowering cybersecurity teams, obtaining managed security services for smaller organizations, securing the supply chain, and implementing incident response plans. Leaders of critical infrastructure organizations are urged to read the guidance and apply the recommendations to defend against Volt Typhoon and similar threats.