Tag: china
-
BadAudio malware: how APT24 scaled its cyberespionage through supply chain attacks
APT24 used supply chain attacks and varied techniques to deploy the BadAudio malware in a long-running cyberespionage campaign. China-linked group APT24 used supply-chain attacks and multiple techniques over three years to deploy the BadAudio downloader and additional malware payloads, Google Threat Intelligence Group (GTIG) warns. According to the researchers, the group shifted from broad web…
-
China-Linked APT31 Launches Stealthy Cyberattacks on Russian IT Using Cloud Services
Tags: attack, china, cloud, cyber, cyberattack, government, group, russia, service, technology, threatThe China-linked advanced persistent threat (APT) group known as APT31 has been attributed to cyber attacks targeting the Russian information technology (IT) sector between 2024 and 2025 while staying undetected for extended periods of time.”In the period from 2024 to 2025, the Russian IT sector, especially companies working as contractors and integrators of solutions for…
-
FCC reversal removes federal cyber safeguards targeting telecom weaknesses post-Salt Typhoon attacks
Tags: access, at&t, attack, breach, ceo, china, communications, control, country, cyber, cyberattack, cybersecurity, exploit, government, group, hacker, intelligence, law, mobile, network, phone, router, threatSalt Typhoon still reverberating: Salt Typhoon impacted major carriers including AT&T, Charter Communications, Consolidated Communications, Lumen Technologies, T-Mobile, Verizon, and Windstream. But law enforcement and intelligence agencies caution that its impact is far more widespread, exposing at least 200 US organizations, plus entities in 80 other countries.According to federal investigations, the attack allowed the Chinese…
-
Chinese APT24 Deploys Custom Malware, New Stealthy Tactics
3-Year Espionage Campaign Targeted Taiwanese Firms. Chinese nation-state group APT24 targeted multiple Taiwanese companies as part of an espionage operation that went undetected for three years. The hacking group continually updated its malware infrastructure and tactics, enabling it to stay under the radar, Google Cloud said. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/chinese-apt24-deploys-custom-malware-new-stealthy-tactics-a-30103
-
How to know if your Asus router is one of thousands hacked by China-state hackers
So far, the hackers are laying low, likely for later use. First seen on arstechnica.com Jump to article: arstechnica.com/security/2025/11/thousands-of-hacked-asus-routers-are-under-control-of-suspected-china-state-hackers/
-
How to know if your Asus router is one of thousands hacked by China-state hackers
So far, the hackers are laying low, likely for later use. First seen on arstechnica.com Jump to article: arstechnica.com/security/2025/11/thousands-of-hacked-asus-routers-are-under-control-of-suspected-china-state-hackers/
-
FCC Drops Telecom Cyber Rules Despite China Espionage Warnings
Experts say the FCC’s rollback of cyber rules leaves U.S. telecom networks exposed to escalating China-linked espionage threats. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/fcc-drops-telecom-cyber-rules-despite-china-espionage-warnings/
-
FCC Drops Telecom Cyber Rules Despite China Espionage Warnings
Experts say the FCC’s rollback of cyber rules leaves U.S. telecom networks exposed to escalating China-linked espionage threats. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/fcc-drops-telecom-cyber-rules-despite-china-espionage-warnings/
-
FCC Drops Telecom Cyber Rules Despite China Espionage Warnings
Experts say the FCC’s rollback of cyber rules leaves U.S. telecom networks exposed to escalating China-linked espionage threats. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/fcc-drops-telecom-cyber-rules-despite-china-espionage-warnings/
-
China’s ‘PlushDaemon’ Hackers Infect Routers to Hijack Software Updates
A unique take on the software update gambit has allowed Beijing’s state-sponsored advanced persistent threat (APT) to evade attention as it mostly targets Chinese organizations. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/chinese-apt-routers-hijack-software-updates
-
China’s ‘PlushDaemon’ Hackers Infect Routers to Hijack Software Updates
A unique take on the software update gambit has allowed Beijing’s state-sponsored advanced persistent threat (APT) to evade attention as it mostly targets Chinese organizations. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/chinese-apt-routers-hijack-software-updates
-
China’s ‘PlushDaemon’ Hackers Infect Routers to Hijack Software Updates
A unique take on the software update gambit has allowed Beijing’s state-sponsored advanced persistent threat (APT) to evade attention as it mostly targets Chinese organizations. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/chinese-apt-routers-hijack-software-updates
-
China’s ‘PlushDaemon’ Hackers Infect Routers to Hijack Software Updates
A unique take on the software update gambit has allowed Beijing’s state-sponsored advanced persistent threat (APT) to evade attention as it mostly targets Chinese organizations. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/chinese-apt-routers-hijack-software-updates
-
APT24 Deploys BADAUDIO in Years-Long Espionage Hitting Taiwan and 1,000+ Domains
A China-nexus threat actor known as APT24 has been observed using a previously undocumented malware dubbed BADAUDIO to establish persistent remote access to compromised networks as part of a nearly three-year campaign.”While earlier operations relied on broad strategic web compromises to compromise legitimate websites, APT24 has recently pivoted to using more sophisticated vectors targeting First…
-
APT24 Deploys BADAUDIO in Years-Long Espionage Hitting Taiwan and 1,000+ Domains
A China-nexus threat actor known as APT24 has been observed using a previously undocumented malware dubbed BADAUDIO to establish persistent remote access to compromised networks as part of a nearly three-year campaign.”While earlier operations relied on broad strategic web compromises to compromise legitimate websites, APT24 has recently pivoted to using more sophisticated vectors targeting First…
-
APT24 Deploys BADAUDIO in Years-Long Espionage Hitting Taiwan and 1,000+ Domains
A China-nexus threat actor known as APT24 has been observed using a previously undocumented malware dubbed BADAUDIO to establish persistent remote access to compromised networks as part of a nearly three-year campaign.”While earlier operations relied on broad strategic web compromises to compromise legitimate websites, APT24 has recently pivoted to using more sophisticated vectors targeting First…
-
China’s ‘PlushDaemon’ Hackers Infect Routers to Hijack Software Updates
A unique take on the software update gambit has allowed Beijing’s state-sponsored advanced persistent threat (APT) to evade attention as it mostly targets Chinese organizations. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/chinese-apt-routers-hijack-software-updates
-
AI as Cyberattacker
From Anthropic: In mid-September 2025, we detected suspicious activity that later investigation determined to be a highly sophisticated espionage campaign. The attackers used AI’s “agentic” capabilities to an unprecedented degree”, using AI not just as an advisor, but to execute the cyberattacks themselves. The threat actor”, whom we assess with high confidence was a Chinese…
-
AI as Cyberattacker
From Anthropic: In mid-September 2025, we detected suspicious activity that later investigation determined to be a highly sophisticated espionage campaign. The attackers used AI’s “agentic” capabilities to an unprecedented degree”, using AI not just as an advisor, but to execute the cyberattacks themselves. The threat actor”, whom we assess with high confidence was a Chinese…
-
China’s APT31 linked to hacks on Russian tech firms
Moscow-based Positive Technologies says a China-linked group tracked as APT31 appears to be responsible for breaches of entities in Russia’s tech sector. First seen on therecord.media Jump to article: therecord.media/russia-report-apt31-china-linked-hacks
-
Despite Chinese hacks, Trump’s FCC votes to scrap cybersecurity rules for phone and internet companies
Two Trump-appointed FCC officials voted to undo the telecom industry’s cybersecurity rules. One Democratic commissioner dissented, saying the decision leaves the United States “less safe” at a time when threats are increasing. First seen on techcrunch.com Jump to article: techcrunch.com/2025/11/21/despite-chinese-hacks-trumps-fcc-votes-to-scrap-cybersecurity-rules-for-phone-and-internet-companies/
-
Four charged over alleged plot to smuggle Nvidia AI chips into China
Prosecutors say front companies, falsified paperwork, and overseas drop points used to dodge US export rules First seen on theregister.com Jump to article: www.theregister.com/2025/11/21/nvidia_china_smuggling_charges/
-
Four charged over alleged plot to smuggle Nvidia AI chips into China
Prosecutors say front companies, falsified paperwork, and overseas drop points used to dodge US export rules First seen on theregister.com Jump to article: www.theregister.com/2025/11/21/nvidia_china_smuggling_charges/
-
FCC rolls back cybersecurity rules for telcos, despite state-hacking risks
The Federal Communications Commission (FCC) has rolled back a previous ruling that required U.S. telecom carriers to implement stricter cybersecurity measures following the massive hack from the Chinese threat group known as Salt Typhoon. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fcc-rolls-back-cybersecurity-rules-for-telcos-despite-state-hacking-risks/
-
4 People Indicted in Alleged Conspiracy to Smuggle Supercomputers and Nvidia Chips to China
A federal prosecutor alleged that one defendant boasted that his father “had engaged in similar business for the Chinese Communist Party.” First seen on wired.com Jump to article: www.wired.com/story/smuggling-supercomputers-china-nvidia-indictment/
-
Four Indicted In Alleged Conspiracy To Smuggle Supercomputers and Nvidia Chips to China
A federal prosecutor alleged one defendant boasted that his father “had engaged in similar business for the Chinese Communist Party.” First seen on wired.com Jump to article: www.wired.com/story/smuggling-supercomputers-china-nvidia-indictment/
-
Google exposes BadAudio malware used in APT24 espionage campaigns
China-linked APT24 hackers have been using a previously undocumented malware called BadAudio in a three-year espionage campaign that recently switched to more sophisticated attack methods. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-exposes-badaudio-malware-used-in-apt24-espionage-campaigns/
-
Chinese APT Infects Routers to Hijack Software Updates
A unique take on the software update gambit has allowed PlushDaemon to evade attention as it mostly targets Chinese organizations. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/chinese-apt-routers-hijack-software-updates
-
FCC spikes Biden-era cyber regulations prompted by Salt Typhoon telecom breaches
The Republican-led FCC voted to remove cybersecurity rules for telecom companies that were put in place before Donald Trump’s inauguration as a response to 2024 breaches attributed to state-backed Chinese hackers. First seen on therecord.media Jump to article: therecord.media/fcc-removes-biden-era-cybersecurity-rules-telecoms-salt-typhoon