CISA, NSI, FBI released critical infrastructure defense tips against Volt Typhoon

CISA, NSA, FBI, and other US and international partners released a joint fact sheet called “People’s Republic of China State-Sponsored Cyber Activity: Actions for Critical Infrastructure Leaders.” This publication includes contributions from various partners.

U.S. Department of Energy (DOE)

• International

New Ransomware Tactics Target VMware ESXi Via SSH Tunneling

By infosecbulletin / Sunday , January 26 2025

Sygnia's recent report highlights the changing strategies of ransomware groups targeting VMware ESXi appliances. These attackers exploit vital virtual infrastructure...

Read More

• Uncategorized

Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass

By infosecbulletin / Friday , January 24 2025

An exhaustive evaluation of three firewall models from Palo Alto Networks has uncovered a host of known security flaws impacting...

Read More

• Alert

CISA Releases 6 ICS Advisories Detailing Security Issues

By infosecbulletin / Friday , January 24 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released 6 advisories for Industrial Control Systems (ICS), highlighting vulnerabilities in various...

Read More

• Hot Topic

Account Credentials for Security Vendors Found on Dark Web: Cyble Report

By infosecbulletin / Thursday , January 23 2025

# "While many leaked security credentials belong to customers, some exposed sensitive accounts suggest that security vendors too have been...

Read More

• Vulnerabilities

Four Critical Ivanti CSA Vulnerabilities Exploited: CISA , FBI warns

By infosecbulletin / Thursday , January 23 2025

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released a joint Cybersecurity Advisory...

Read More

• Alert
• Vulnerabilities

GitLab Releases Patch (CVE-2025-0314) for XSS Exploit

By infosecbulletin / Thursday , January 23 2025

GitLab has released update for high severity cross-site scripting (XSS) flaw. Versions 17.8.1, 17.7.3, and 17.6.4 for both Community Edition...

Read More

• Uncategorized

CVE-2025-20156
Cisco Fixes Meeting Management Allowing Privilege Escalation

By infosecbulletin / Thursday , January 23 2025

Cisco has released a security advisory concerning a critical privilege escalation vulnerability (CVE-2025-20156) in its Meeting Management software. With a...

Read More

• Alert
• Vulnerabilities

Delay patching leaves about 50,000 Fortinet firewalls to zero-day attack

By infosecbulletin / Wednesday , January 22 2025

Fortinet customers must apply the latest updates, as almost 50,000 management interfaces remain vulnerable to the latest zero-day exploit. The...

Read More

• Daily Security Update

Daily Security Update Dated: 21.01.2025

By infosecbulletin / Tuesday , January 21 2025

Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so...

Read More

• Uncategorized

126 Linux kernel Vulns Allow Attackers Exploit 78 Linux Sub-Systems

By infosecbulletin / Tuesday , January 21 2025

Ubuntu 22.04 LTS users are advised to update their systems right away due to a crucial security patch from Canonical...

Read More

U.S. Environmental Protection Agency (EPA)

U.S. Transportation Security Administration (TSA)

U.S. Department of Treasury

Australian Signals Directorate’s (ASD’s) Australian Cyber Security Centre (ACSC)

Canadian Centre for Cyber Security (CCCS) a part of the Communications Security Establishment (CSE)

United Kingdom’s National Cyber Security Centre (NCSC-UK)

New Zealand’s National Cyber Security Centre (NCSC-NZ)

The US authoring agencies believe that “Volt Typhoon”, a group sponsored by the People’s Republic of China, is trying to position themselves on IT networks using living off the land (LOTL) techniques. They aim to carry out cyber attacks against critical infrastructure in the US in case of a major crisis or conflict with the US. The fact sheet alerts leaders of critical infrastructure about this urgent risk and provides guidance on how to protect their organization from this threat.

CISA and its partners recommend that leaders of critical infrastructure organizations read the joint fact sheet to defend against the Volt Typhoon threat. For more information, see the guidance on identifying and mitigating Living off the Land Techniques. Visit Secure by Design for information on secure by design principles and practices.