Friday, April 12, 2024
HomeCyber CrimeCISA Issues Warning on Chinese Cyber Espionage Attacks

CISA Issues Warning on Chinese Cyber Espionage Attacks


The CISA, the NSA, and the FBI have released a combined alert to warn enterprises about the rise in Chinese threat actors’ cyber espionage efforts.


The top objective is still the telecommunications industry.


The assaults are largely directed at telecommunications businesses, according to the advice, and are carried out via exploiting vulnerabilities.


Since 2020, the attackers have been abusing a range of previously disclosed vulnerabilities on a regular basis.

Three Cisco devices are affected, four QNAP devices are affected, two Pulse Secure devices are affected, and one each Citrix, D-Link, Fortinet, Netgear, MikroTik, and DrayTek device is affected.

To scan devices impacted by these vulnerabilities, cyber attackers use software frameworks like RouterSploit and RouterScan. Threat actors can acquire access to victim accounts or public-facing applications after the susceptible device is recognised.

Once within a telecommunications company or network service provider, cyber actors locate important users, systems, and infrastructure in order to ensure long-term persistence.

The hacked devices also function as C2 servers and proxy systems for threat actors to infiltrate other networks, according to the CISA.

Other noteworthy recent occurrences

Researchers have highlighted the suspected involvement of Chinese threat actors in additional espionage campaigns than those targeting telecoms companies.

Proofpoint discovered that a threat actor known as TA413 had used the Follina vulnerability to undertake attacks against the Tibetan community in one event. The threat actors utilised the Central Tibetan Administration’s ‘Women Empowerment Desk’ as a bait to target the community.

Recently, a very sophisticated Chinese APT known as LuoYu reappeared in the threat environment, using a man-in-the-middle assault to transmit WinDealer malware.

The virus was found on computers running Windows, Linux, and Mac OS X, as well as Android smartphones.

IEMLabs is an ISO 27001:2013 and ISO 9001:2015 certified company, we are also a proud member of EC Council, NASSCOM, Data Security Council of India (DSCI), Indian Chamber of Commerce (ICC), U.S. Chamber of Commerce, and Confederation of Indian Industry (CII). The company was established in 2016 with a vision in mind to provide Cyber Security to the digital world and make them Hack Proof. The question is why are we suddenly talking about Cyber Security and all this stuff? With the development of technology, more and more companies are shifting their business to Digital World which is resulting in the increase in Cyber Crimes.


Please enter your comment!
Please enter your name here

Most Popular

Recent Comments

Izzi Казино онлайн казино казино x мобильді нұсқасы on Instagram and Facebook Video Download Made Easy with
Temporada 2022-2023 on CamPhish
2017 Grammy Outfits on Meesho Supplier Panel: Register Now!
React JS Training in Bangalore on Best Online Learning Platforms in India
DigiSec Technologies | Digital Marketing agency in Melbourne on Buy your favourite Mobile on EMI
亚洲A∨精品无码一区二区观看 on Restaurant Scheduling 101 For Better Business Performance

Write For Us