Man
Professional
- Messages
- 3,070
- Reaction score
- 606
- Points
- 113
Chinese hackers have infiltrated U.S. Internet service providers and obtained information from systems that the federal government uses to wiretap in court. The largest providers - Verizon Communications, AT&T, Lumen Technologies - became victims of hackers.
Hacking American ISPs
Hackers linked to the Chinese government have breached the networks of a number of broadband providers in the United States and gained access to information from systems used by the U.S. federal government to wiretap phone conversations authorized by court warrants. The Wall Street Journal writes about this in early October 2024.
According to The Wall Street Journal, hackers may have had access to the network infrastructure that is used to fulfill legitimate U.S. requests for communications data for months or longer, posing a serious threat to U.S. national security.
In particular, Verizon Communications, AT&T and Lumen Technologies were subjected to cyberattacks. Under U.S. federal law, telecommunications and broadband companies must allow authorities to intercept electronic information under a court order. It is impossible to determine whether IT systems that support foreign intelligence surveillance were also vulnerable to this hack.
The IT attack was carried out by a Chinese hacker group dubbed the "Salt Typhoon." The attack has been reported in recent weeks, and an active investigation by the U.S. government and private sector security analysts is ongoing.
A person familiar with the IT attack told The Wall Street Journal that the U.S. government considers these intrusions to be historically significant and cause concern.
The Chinese Embassy in Washington denies the attempt to hack US telecommunications systems and reported misrepresentations. Embassy spokesman Liu Pengyu accused Washington of politicizing cybersecurity issues in order to denigrate China. Cyber incidents can affect the security, prosperity, and resilience of any country, and can undermine the benefits of its ongoing digital transformation. Improving cybersecurity and cyberspace capabilities is an increasing priority for both developed and developing countries. Pengyu added that American representatives should not blame others for their incompetence in the field of information security (IS).
Cyber attacks on US
infrastructure Chinese hackers' attempts to attack critical US infrastructure using malicious software have recently reached unprecedented proportions, Washington considers it a threat to national security. This was stated by the head of the Federal Bureau of Investigation (FBI) Christopher Wray.
As an example, Christopher Wray cited the Volt Typhoon group. In early February of this year, the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the National Security Agency (NSA) reported that Chinese-sponsored hackers had attacked the networks of a number of organizationsthroughout the United States, including communications, energy, transportation, and water facilities; Attackers could provoke malfunctions in their work. According to the US authorities, hackers retained access to the computer networks of some objects for at least five years.
According to the NSA, Beijing-backed hackers are proactively introducing malware into targets that can be launched at any time and thereby disrupt the operation of critical infrastructure in the United States.
According to Ray, this is only the tip of the iceberg, this is one of many such attempts by China. The head of the FBI did not specify which facilities were damaged, noting only that the department is doing a lot of work.
Chinese spies
Cyberspies first compromised one of the victim's three unmanaged AIX servers in March of this year and remained on the internal network of one of the companies for four months in search of data of interest. This company manufactures components for public and private aerospace organizations, and other critical sectors, including oil and gas production. The hacking for unknown reasons is attributed to a group of hackers from China, claiming that the country's government could be interested in the company's drawings and developments.
After discovering Chinese agents on its network in August, the manufacturer notified local and federal law enforcement and worked with government cybersecurity officials to establish attribution and remediate the breach. It turned out that the attackers created the possibility of constant access to the company's internal network, their powers allowed access to intellectual property.
It is curious that attempts to hack IT manufacturers do not occur directly. Hacking into a secret network to steal projects or create trouble is not easy. Nevertheless, it is possible to penetrate the network of the production center or contractors, which are less protected. In this case, it will be much easier to hack the internal network using a trusted account.
Hacking American ISPs
Hackers linked to the Chinese government have breached the networks of a number of broadband providers in the United States and gained access to information from systems used by the U.S. federal government to wiretap phone conversations authorized by court warrants. The Wall Street Journal writes about this in early October 2024.
According to The Wall Street Journal, hackers may have had access to the network infrastructure that is used to fulfill legitimate U.S. requests for communications data for months or longer, posing a serious threat to U.S. national security.
In particular, Verizon Communications, AT&T and Lumen Technologies were subjected to cyberattacks. Under U.S. federal law, telecommunications and broadband companies must allow authorities to intercept electronic information under a court order. It is impossible to determine whether IT systems that support foreign intelligence surveillance were also vulnerable to this hack.
The IT attack was carried out by a Chinese hacker group dubbed the "Salt Typhoon." The attack has been reported in recent weeks, and an active investigation by the U.S. government and private sector security analysts is ongoing.
A person familiar with the IT attack told The Wall Street Journal that the U.S. government considers these intrusions to be historically significant and cause concern.
The Chinese Embassy in Washington denies the attempt to hack US telecommunications systems and reported misrepresentations. Embassy spokesman Liu Pengyu accused Washington of politicizing cybersecurity issues in order to denigrate China. Cyber incidents can affect the security, prosperity, and resilience of any country, and can undermine the benefits of its ongoing digital transformation. Improving cybersecurity and cyberspace capabilities is an increasing priority for both developed and developing countries. Pengyu added that American representatives should not blame others for their incompetence in the field of information security (IS).
Cyber attacks on US
infrastructure Chinese hackers' attempts to attack critical US infrastructure using malicious software have recently reached unprecedented proportions, Washington considers it a threat to national security. This was stated by the head of the Federal Bureau of Investigation (FBI) Christopher Wray.
As an example, Christopher Wray cited the Volt Typhoon group. In early February of this year, the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the National Security Agency (NSA) reported that Chinese-sponsored hackers had attacked the networks of a number of organizationsthroughout the United States, including communications, energy, transportation, and water facilities; Attackers could provoke malfunctions in their work. According to the US authorities, hackers retained access to the computer networks of some objects for at least five years.
According to the NSA, Beijing-backed hackers are proactively introducing malware into targets that can be launched at any time and thereby disrupt the operation of critical infrastructure in the United States.
According to Ray, this is only the tip of the iceberg, this is one of many such attempts by China. The head of the FBI did not specify which facilities were damaged, noting only that the department is doing a lot of work.
Chinese spies
Cyberspies first compromised one of the victim's three unmanaged AIX servers in March of this year and remained on the internal network of one of the companies for four months in search of data of interest. This company manufactures components for public and private aerospace organizations, and other critical sectors, including oil and gas production. The hacking for unknown reasons is attributed to a group of hackers from China, claiming that the country's government could be interested in the company's drawings and developments.
After discovering Chinese agents on its network in August, the manufacturer notified local and federal law enforcement and worked with government cybersecurity officials to establish attribution and remediate the breach. It turned out that the attackers created the possibility of constant access to the company's internal network, their powers allowed access to intellectual property.
It is curious that attempts to hack IT manufacturers do not occur directly. Hacking into a secret network to steal projects or create trouble is not easy. Nevertheless, it is possible to penetrate the network of the production center or contractors, which are less protected. In this case, it will be much easier to hack the internal network using a trusted account.
