InfoSecBulletin Cybersecurity for mankind
US authorities have revealed a major cyberespionage campaign by hackers, targeting information from Americans in government and politics.
The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) said in a joint statement on Wednesday that actors affiliated with Beijing had “compromised networks at multiple telecommunications companies”.
SonicWall patched SSLVPN Vuln Allowing Firewall Crashing
GitLab Releases Security Update For Multiple Vulns
ISPAB president “whatsapp” got hacked via phishing link
Zyxel released patches 2 vulns in its USG FLEX H series firewalls
South Korea’s largest SK Telecom Hit by Malware: SIM-related info leaked
ChatGPT Develops Exploit for CVEs Before Public PoCs Share
TP-Link Router Vulns Allow to Execute Malicious SQL Commands
SSL.com’s domain validation system’s bug found: Hacker exploited
Amazon Follows Microsoft’s Lead, Halts Some Data Center Deals
Hackers Exploit Zoom’s Remote Control Feature for System Access
In a statement FBI, CISA said, “we have identified that PRC-affiliated actors have compromised networks at multiple telecommunications companies to enable the theft of customer call records data, the compromise of private communications of a limited number of individuals who are primarily involved in government or political activity, and the copying of certain information that was subject to U.S. law enforcement requests pursuant to court orders. We expect our understanding of these compromises to grow as the investigation continues.”
Aljazeera reported, “The hackers also accessed “information that was subject to US law enforcement requests pursuant to court orders”, the agencies said, suggesting they sought to compromise programmes subject to the Foreign Intelligence Surveillance Act (FISA), which grants spy agencies broad powers to surveil the communications of individuals suspected of being foreign agents.”
The warning follows several major hacking incidents reportedly linked to China, as U.S. authorities claim these attacks aim to steal technology, government information, and target critical infrastructure like the electrical grid.
In September,The FBI has disrupted a large Chinese hacking operation called Flax Typhoon, which involved installing malicious software on over 200,000 devices like cameras, video recorders, and routers. This created a massive botnet used for various cyber crimes.
ABC news reported, “China has rejected accusations from U.S. officials that it engages in cyberespionage directed against Americans. A message left with China’s embassy in Washington was not immediately returned Wednesday.”
