* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Sunday, July 5, 2026
Earth-News
  • Home
  • Business
  • Entertainment

    Transforming Saint Paul’s Entertainment Complex into a Thriving Hub for the Future

    Get Ready for an Unforgettable Live Entertainment Lineup at Struthers’ Big Boy Train Celebration!

    Comic-Con Shocker: Beloved Annual Party Canceled in Surprise Move

    Miley Cyrus Stuns with Jaw-Dropping Barbie Doll Transformation!

    What Will Be Celebrated as an American Classic 250 Years from Now?

    How Investors Might Respond to PENN Entertainment’s Aurora Casino Launch and the Russell 2000 Shake-Up

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology

    Who owns Micron Technology? A look at its top investors – Yahoo Finance

    Experience the Future of Farming at Farm Technology Days This July 14-16!

    Aviation Technology Launches Exciting New Interiors Division

    China-linked actors target more than technology as AI competition with U.S. intensifies – CNBC

    Is tech ruining the World Cup? – BBC

    Arch Appoints Chief Technology Officer – Family Wealth Report

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment

    Transforming Saint Paul’s Entertainment Complex into a Thriving Hub for the Future

    Get Ready for an Unforgettable Live Entertainment Lineup at Struthers’ Big Boy Train Celebration!

    Comic-Con Shocker: Beloved Annual Party Canceled in Surprise Move

    Miley Cyrus Stuns with Jaw-Dropping Barbie Doll Transformation!

    What Will Be Celebrated as an American Classic 250 Years from Now?

    How Investors Might Respond to PENN Entertainment’s Aurora Casino Launch and the Russell 2000 Shake-Up

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology

    Who owns Micron Technology? A look at its top investors – Yahoo Finance

    Experience the Future of Farming at Farm Technology Days This July 14-16!

    Aviation Technology Launches Exciting New Interiors Division

    China-linked actors target more than technology as AI competition with U.S. intensifies – CNBC

    Is tech ruining the World Cup? – BBC

    Arch Appoints Chief Technology Officer – Family Wealth Report

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

China’s APT40 gang is ready to attack vulns within hours or days of public release

July 9, 2024
in Technology
China’s APT40 gang is ready to attack vulns within hours or days of public release
Share on FacebookShare on Twitter

Law enforcement agencies from eight nations, led by Australia, have issued an advisory that details the tradecraft used by China-aligned threat actor APT40 – aka Kryptonite Panda, GINGHAM TYPHOON, Leviathan and Bronze Mohawk – and found it prioritizes developing exploits for newly found vulnerabilities and can target them within hours.

The advisory describes APT40 as a “state-sponsored cyber group” and the People’s Republic of China (PRC) as that sponsor. The agencies that authored the advisory – which come from Australia, the US, Canada, New Zealand, Japan, South Korea, the UK, and Germany – believe APT40 “conducts malicious cyber operations for the PRC Ministry of State Security (MSS).”

Development of the advisory was led by Australia, because the Cyber Security Centre (ACSC) at the nation’s Signals Directorate was made aware in 2022 of an APT40 attack on an unidentified local organization.

The ACSC secured the victim org’s permission and “deployed host-based sensors to likely affected hosts on the organization’s network.” Info that flowed from those sensors allowed ACSC incident response analysts to map APT40 activities.

The advisory is the result, and suggests that APT40 “possesses the capability to rapidly transform and adapt exploit proof-of-concept(s) (POCs) of new vulnerabilities and immediately utilize them against target networks possessing the infrastructure of the associated vulnerability.” The gang also watches networks of interest to look for unpatched targets.

China-linked APT40 gang targets wind farms, Australian government

Oh no Xi didn’t?! China’s hackers nick naval tech blueprints, diddle with foreign elections to boost trade – new claim

New Zealand to world: China attacked us, too!

Paying for WinRAR in all the wrong ways – Russia and China hitting ancient app

“This regular reconnaissance postures the group to identify vulnerable, end-of-life or no longer maintained devices on networks of interest, and to rapidly deploy exploits,” the advisory warns.

Those efforts yield results, because some systems have not been patched for problems identified as long ago as 2017. Some of the vulns APT40 targets are old news – Log4J (CVE 2021 44228), Atlassian Confluence (CVE-2021-31207, CVE-2021- 26084). and Microsoft Exchange (CVE-2021-31207, CVE 2021-34523, CVE-2021-34473) are high on the hit list.

To target its victims, APT40 appears to go looking for a device at an unrelated entity, to use as a launching point. In the case of the attack observed by the ACSC, that device was probably located at a small business or home. That device probes a target using tactics that make the attack appear to be part of legitimate traffic.

“APT40 has embraced the global trend of using compromised devices, including small-office/home-office (SOHO) devices, as operational infrastructure and last-hop redirectors for its operations in Australia,” the advisory observes. “Many of these SOHO devices are end-of-life or unpatched and offer a soft target for N-day exploitation.”

Popping SOHO boxes has, however, “enabled the authoring agencies to better characterize and track this group’s movements.”

And those movements see the group use web shells and search for valid user credentials that allow it to achieve persistent access.

Malware is eventually installed, with exfiltration of info the aim.

The advisory outlines mitigation tactics that are said to offer decent defences against APT40. They’re not rocket science: logging, patch management, and network segmentation are all listed.

So are multifactor authentication, disabling unused network services, use of web application firewalls, least privilege access, and replacement of end-of-life equipment.

The advisory also lists and links to ten samples of malware deployed by APT4, and includes two case studies. The latter documents are, however, now old enough that the victims’ IT estates have been remediated – APT40 may well have moved on to other tactics since. ®

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : The Register – https://go.theregister.com/feed/www.theregister.com/2024/07/09/apt_40_tradecraft_advisory/

Tags: China’sReadytechnology
Previous Post

EXPLAINED: Why Indians Are Unhappy With Rohit Sharma’s New Profile Pic?

Next Post

Founder of Indian ride-share biz Ola calls for 70-hour work week

Spectacular Parades, Dazzling Drone Show, and an Explosion of Fireworks Ignite the City in a Night to Remember

July 5, 2026

Fireworks, heat and politics: America celebrates its 250th birthday – TelegraphHerald.com

July 5, 2026

Indiana Bishops Emphasize the Eucharist as Central to Their Vision of ‘Integral Ecology’ in New Pastoral Letter

July 5, 2026

Who owns Micron Technology? A look at its top investors – Yahoo Finance

July 5, 2026

Epic Texas Clash: Astros Triumph Over Rays 10-8 in Nail-Biting Finish

July 5, 2026

Ravens Outsmart Wolves by Anticipating Their Every Move

July 5, 2026

From July 4, 1776 to Today: The Incredible Journey of Space Science

July 5, 2026

Con Woman Caught Secretly Subletting Homes to Fuel Lavish Lifestyle

July 5, 2026

How Ancelotti Could Unlock Brazil’s Path to Their Sixth World Cup Triumph

July 5, 2026

Why Rising Fees and Insurance Costs Are Hitting Everyone’s Wallets Hard

July 5, 2026

Categories

Archives

July 2026
M T W T F S S
 12345
6789101112
13141516171819
20212223242526
2728293031  
« Jun    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (1,301)
  • Economy (1,320)
  • Entertainment (22,199)
  • General (22,479)
  • Health (10,357)
  • Lifestyle (1,334)
  • News (22,149)
  • People (1,325)
  • Politics (1,343)
  • Science (16,535)
  • Sports (21,820)
  • Technology (16,307)
  • World (1,314)

Recent News

Spectacular Parades, Dazzling Drone Show, and an Explosion of Fireworks Ignite the City in a Night to Remember

July 5, 2026

Fireworks, heat and politics: America celebrates its 250th birthday – TelegraphHerald.com

July 5, 2026
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version