Chinese hackers exploit vulnerability to breach internet firms

0
2


A cybersecurity firm, Lumen Technologies, has reported that a Chinese hacking group exploited a software vulnerability to breach several internet firms in the US and beyond.

The hackers allegedly discovered a vulnerability in Versa Director, a platform designed to control and manage services for customers of Versa Networks, a company based in Santa Clara, California.

Lumen’s researchers identified five victims—four in the US and one in India. The names of the affected companies have not been disclosed. Versa Networks stated that it was aware an advanced hacking group had used the exploit to gain full access in “at least one known instance.” The company urged its customers to update the software to address the security issue. Shortly afterward, Versa Networks announced via email that it had identified three victims in total, including an internet service provider.

The hacking campaign is believed to have begun as early as June 12. Lumen’s researchers stated with “moderate confidence” that the campaign was conducted by a group known as ‘Volt Typhoon,’ which is allegedly backed by the Chinese government. Ryan English, a researcher at Lumen, suggested that the internet companies were targeted to enable surveillance of their customers. He noted that such attackers “very rarely go in through the front door.”

Doug Britton, an executive at RunSafe Security, commented that Lumen’s research appeared credible. He added that the level of access described in the report would allow a group like Volt Typhoon “the ability to conduct broad, silent surveillance.”

In response to these allegations, the Chinese Embassy in Washington issued a statement late Tuesday. The embassy claimed that Volt Typhoon is actually a group of cybercriminals and is not sponsored by any state or region. The statement accused the US intelligence community of collaborating with cybersecurity companies to exaggerate the threat of Chinese government-supported cyberattacks against the US.

Brandon Wales, the former executive director of the Cybersecurity and Infrastructure Security Agency (CISA), was quoted in the Washington Post saying that China’s hacking efforts had “dramatically increased compared to previous years.”

Volt Typhoon has become a group of particular concern for US cybersecurity officials. In April, FBI Director Christopher Wray expressed concern that China was developing the “ability to physically wreak havoc” on US critical infrastructure.

This incident highlights the ongoing tensions between the US and China regarding cybersecurity issues. It also underscores the importance of software security and the potential vulnerabilities in widely used management platforms. As cyber threats continue to evolve, the need for robust security measures and international cooperation in addressing these challenges remains a critical issue for governments, businesses, and cybersecurity professionals worldwide.

(Image by Ivana Tomášková)

See also: DDoS attack disrupts Telegram and WhatsApp in Russia

Want to learn more about AI and big data from industry leaders? Check out AI & Big Data Expo taking place in Amsterdam, California, and London. The comprehensive event is co-located with other leading events including Intelligent Automation Conference, BlockX, Digital Transformation Week, and Cyber Security & Cloud Expo.

Explore other upcoming enterprise technology events and webinars powered by TechForge here.

Tags: china, cybersecurity, hackers, internet


👇Follow more 👇
👉 bdphone.com
👉 ultraactivation.com
👉 trainingreferral.com
👉 shaplafood.com
👉 bangladeshi.help
👉 www.forexdhaka.com
👉 uncommunication.com
👉 ultra-sim.com
👉 forexdhaka.com
👉 ultrafxfund.com

LEAVE A REPLY

Please enter your comment!
Please enter your name here