-
Scandalous! China's Cyber Espionage Exposed: US Strikes Back with Sanctions and Bounties
- 2024/12/16
- 再生時間: 3 分
- ポッドキャスト
-
サマリー
あらすじ・解説
This is your Digital Frontline: Daily China Cyber Intel podcast.
Hey there, I'm Ting, and welcome to Digital Frontline. Today, we're diving into the latest on Chinese cyber activities targeting US interests. Let's get straight to it.
Over the past 24 hours, we've seen some significant developments. The US Treasury's Office of Foreign Assets Control (OFAC) has sanctioned Sichuan Silence Information Technology Company, Limited, and one of its employees, Guan Tianfeng, for their roles in a major cyberattack in April 2020. This attack compromised tens of thousands of firewalls worldwide, including over 23,000 in the United States, with victims including critical infrastructure entities[1][4].
Guan Tianfeng, operating under the pseudonym "GbigMao," was identified as the key perpetrator behind the firewall compromise. He leveraged tools and pre-positioning devices provided by Sichuan Silence, a government contractor serving Chinese intelligence agencies. The US Department of Justice has unsealed an indictment against Guan, and the State Department has announced a Rewards for Justice offer of up to $10 million for information about Sichuan Silence or Guan.
This action underscores the persistent cyber threats posed by malicious actors linked to China, as highlighted in the 2024 Annual Threat Assessment by the Office of the Director of National Intelligence. China remains the most active and persistent cyber threat to US government, private-sector, and critical infrastructure networks[2].
The report also mentions the Volt Typhoon cyber espionage group's KV Botnet, which was probably intended to pre-position cyber-attacks against infrastructure in Guam and to enable disrupting communications between the United States and Asia. This and other similar campaigns demonstrate China's aggressive cyber operations against the United States and its efforts to suppress the free flow of information in cyberspace.
In response to these threats, House Homeland Security Committee Republicans have introduced legislation to combat growing cyber threats from the Chinese Communist Party (CCP) against US critical infrastructure. The bill aims to establish an interagency task force led by the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) to address the cybersecurity threats posed by state-sponsored cyber actors associated with the People’s Republic of China (PRC), including ‘Volt Typhoon’[5].
So, what can businesses and organizations do to protect themselves? First, stay informed about the latest threats and advisories. Second, implement robust cybersecurity measures, including regular software updates and strong password policies. Third, consider investing in threat intelligence services to stay ahead of emerging threats. And finally, collaborate with other organizations and government agencies to share information and best practices.
That's all for today's update. Stay vigilant, and we'll catch you on the next Digital Frontline.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
Hey there, I'm Ting, and welcome to Digital Frontline. Today, we're diving into the latest on Chinese cyber activities targeting US interests. Let's get straight to it.
Over the past 24 hours, we've seen some significant developments. The US Treasury's Office of Foreign Assets Control (OFAC) has sanctioned Sichuan Silence Information Technology Company, Limited, and one of its employees, Guan Tianfeng, for their roles in a major cyberattack in April 2020. This attack compromised tens of thousands of firewalls worldwide, including over 23,000 in the United States, with victims including critical infrastructure entities[1][4].
Guan Tianfeng, operating under the pseudonym "GbigMao," was identified as the key perpetrator behind the firewall compromise. He leveraged tools and pre-positioning devices provided by Sichuan Silence, a government contractor serving Chinese intelligence agencies. The US Department of Justice has unsealed an indictment against Guan, and the State Department has announced a Rewards for Justice offer of up to $10 million for information about Sichuan Silence or Guan.
This action underscores the persistent cyber threats posed by malicious actors linked to China, as highlighted in the 2024 Annual Threat Assessment by the Office of the Director of National Intelligence. China remains the most active and persistent cyber threat to US government, private-sector, and critical infrastructure networks[2].
The report also mentions the Volt Typhoon cyber espionage group's KV Botnet, which was probably intended to pre-position cyber-attacks against infrastructure in Guam and to enable disrupting communications between the United States and Asia. This and other similar campaigns demonstrate China's aggressive cyber operations against the United States and its efforts to suppress the free flow of information in cyberspace.
In response to these threats, House Homeland Security Committee Republicans have introduced legislation to combat growing cyber threats from the Chinese Communist Party (CCP) against US critical infrastructure. The bill aims to establish an interagency task force led by the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) to address the cybersecurity threats posed by state-sponsored cyber actors associated with the People’s Republic of China (PRC), including ‘Volt Typhoon’[5].
So, what can businesses and organizations do to protect themselves? First, stay informed about the latest threats and advisories. Second, implement robust cybersecurity measures, including regular software updates and strong password policies. Third, consider investing in threat intelligence services to stay ahead of emerging threats. And finally, collaborate with other organizations and government agencies to share information and best practices.
That's all for today's update. Stay vigilant, and we'll catch you on the next Digital Frontline.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta