InfoSecBulletin Cybersecurity for mankind
US authorities have revealed a major cyberespionage campaign by hackers, targeting information from Americans in government and politics.
The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) said in a joint statement on Wednesday that actors affiliated with Beijing had “compromised networks at multiple telecommunications companies”.
WhatsApp banned on all US House of Representatives devices
Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store
OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems
Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform
Hackers Bypass Gmail MFA With App-Specific Password Reuse
Russia detects first SuperCard malware attacks via NFC
Income Property Investments exposes 170,000+ Individuals record
ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs
CISA Flags Active Exploits in Apple iOS and TP-Link Routers
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online
In a statement FBI, CISA said, “we have identified that PRC-affiliated actors have compromised networks at multiple telecommunications companies to enable the theft of customer call records data, the compromise of private communications of a limited number of individuals who are primarily involved in government or political activity, and the copying of certain information that was subject to U.S. law enforcement requests pursuant to court orders. We expect our understanding of these compromises to grow as the investigation continues.”
Aljazeera reported, “The hackers also accessed “information that was subject to US law enforcement requests pursuant to court orders”, the agencies said, suggesting they sought to compromise programmes subject to the Foreign Intelligence Surveillance Act (FISA), which grants spy agencies broad powers to surveil the communications of individuals suspected of being foreign agents.”
The warning follows several major hacking incidents reportedly linked to China, as U.S. authorities claim these attacks aim to steal technology, government information, and target critical infrastructure like the electrical grid.
In September,The FBI has disrupted a large Chinese hacking operation called Flax Typhoon, which involved installing malicious software on over 200,000 devices like cameras, video recorders, and routers. This created a massive botnet used for various cyber crimes.
ABC news reported, “China has rejected accusations from U.S. officials that it engages in cyberespionage directed against Americans. A message left with China’s embassy in Washington was not immediately returned Wednesday.”
