CISA, NSA, FBI, and other US and international partners released a joint fact sheet called “People’s Republic of China State-Sponsored Cyber Activity: Actions for Critical Infrastructure Leaders.” This publication includes contributions from various partners.
U.S. Department of Energy (DOE)
By infosecbulletin
/ Sunday , April 28 2024
This May, Dhaka, Bangladesh, will host Phoenix Summit 2024, a landmark event in the global cyber security arena. Set from...
Read More
By infosecbulletin
/ Saturday , April 27 2024
The worm was first discovered in a 2023 post by security firm Sophos. It became active in 2019 when a...
Read More
By infosecbulletin
/ Friday , April 26 2024
Palo Alto Networks has given urgent advice to the remediation of a critical vulnerability, known as CVE-2024-3400, which attackers have...
Read More
By infosecbulletin
/ Friday , April 26 2024
Organizations across all sectors and of all sizes are too frequently impacted by damaging ransomware incidents. Many of these incidents...
Read More
By infosecbulletin
/ Friday , April 26 2024
According to the report by several Indian media, social media platform Meta will withdraw its entire service from India if...
Read More
By infosecbulletin
/ Friday , April 26 2024
Someone is pretending to be Rajshahi University Vice-Chancellor, Professor Dr. Golam Sabbir Sattar, by creating a fake email account and...
Read More
By infosecbulletin
/ Friday , April 26 2024
Platform BreachForum, bad actor perell, same person who claimed to expose the data of "Bharat Sanchar Nigam Limited" BSNL for...
Read More
By infosecbulletin
/ Thursday , April 25 2024
“Our customers are our utmost priority and we are wholeheartedly dedicated to safe guarding their interests. It has come to...
Read More
By infosecbulletin
/ Thursday , April 25 2024
CISA issued eight advisories about Industrial Control Systems (ICS) on April 25, 2024. The advisories share important information about security...
Read More
By infosecbulletin
/ Thursday , April 25 2024
Google fixed a serious Chrome bug known as CVE-2024-4058 in the ANGLE graphics layer engine along with four vulnerabilities in...
Read More
U.S. Environmental Protection Agency (EPA)
U.S. Transportation Security Administration (TSA)
U.S. Department of Treasury
Australian Signals Directorate’s (ASD’s) Australian Cyber Security Centre (ACSC)
Canadian Centre for Cyber Security (CCCS) a part of the Communications Security Establishment (CSE)
United Kingdom’s National Cyber Security Centre (NCSC-UK)
New Zealand’s National Cyber Security Centre (NCSC-NZ)
The US authoring agencies believe that “Volt Typhoon”, a group sponsored by the People’s Republic of China, is trying to position themselves on IT networks using living off the land (LOTL) techniques. They aim to carry out cyber attacks against critical infrastructure in the US in case of a major crisis or conflict with the US. The fact sheet alerts leaders of critical infrastructure about this urgent risk and provides guidance on how to protect their organization from this threat.
CISA and its partners recommend that leaders of critical infrastructure organizations read the joint fact sheet to defend against the Volt Typhoon threat. For more information, see the guidance on identifying and mitigating Living off the Land Techniques. Visit Secure by Design for information on secure by design principles and practices.