* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Monday, June 2, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Devin Harjes Dies: ‘Manifest’ & ‘Boardwalk Empire’ Actor Was 41 – WyomingNews.com

    Tragic Loss: Devin Harjes, Star of ‘Manifest’ and ‘Boardwalk Empire,’ Passes Away at 41

    Why Starz Entertainment Stock Soared Today – The Motley Fool

    Unpacking the Surge: What Fueled Starz Entertainment’s Stock Explosion Today!

    Unveiling the Enigmatic: First Looks at Destruction and Puck in ‘The Sandman

    Jackie Chan Reveals This Family Member ‘Never Watched’ The Whole Of Any Of His Movies – Yahoo

    Jackie Chan Reveals This Family Member ‘Never Watched’ The Whole Of Any Of His Movies – Yahoo

    Mavs CEO holds firm on new arena, entertainment district in Dallas – Dallas News

    Mavs CEO Stands Strong on Vision for New Arena and Entertainment District in Dallas

    Entertainment: On Your Marks, Get Set, Beer Run! – Urban Milwaukee

    Get Ready to Race: The Ultimate Beer Run Experience Awaits!

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    ROLAND’S NEW WIRELESS TRIGGER TECHNOLOGY, PORTER & DAVIES ON TOUR, NEW 64 AUDIO ASPIRE UNIVERSAL IEM MODELS, WAVES FREE PLUGIN PACK – Modern Drummer Magazine

    ROLAND’S NEW WIRELESS TRIGGER TECHNOLOGY, PORTER & DAVIES ON TOUR, NEW 64 AUDIO ASPIRE UNIVERSAL IEM MODELS, WAVES FREE PLUGIN PACK – Modern Drummer Magazine

    This giant microwave may change the future of war – MIT Technology Review

    Revolutionizing Warfare: The Impact of a Game-Changing Giant Microwave

    Bajeed Pattan Joins Forbes Technology Council as Innovation Leader – PRWeb

    Bajeed Pattan Takes the Helm as Innovation Leader at Forbes Technology Council!

    Lafayette Regional Technology Council – Tech Leadership That’s Homegrown and Future-Focused – Discover Lafayette

    Lafayette Regional Technology Council – Tech Leadership That’s Homegrown and Future-Focused – Discover Lafayette

    Drone technology demo in Cambria County showcases future of lifesaving medical deliveries – local21news.com

    Revolutionizing Healthcare: Drone Technology Takes Flight for Lifesaving Medical Deliveries in Cambria County

    Revolutionary Harvesting Technology Promises to Slash CAR-T Manufacturing Costs!

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Devin Harjes Dies: ‘Manifest’ & ‘Boardwalk Empire’ Actor Was 41 – WyomingNews.com

    Tragic Loss: Devin Harjes, Star of ‘Manifest’ and ‘Boardwalk Empire,’ Passes Away at 41

    Why Starz Entertainment Stock Soared Today – The Motley Fool

    Unpacking the Surge: What Fueled Starz Entertainment’s Stock Explosion Today!

    Unveiling the Enigmatic: First Looks at Destruction and Puck in ‘The Sandman

    Jackie Chan Reveals This Family Member ‘Never Watched’ The Whole Of Any Of His Movies – Yahoo

    Jackie Chan Reveals This Family Member ‘Never Watched’ The Whole Of Any Of His Movies – Yahoo

    Mavs CEO holds firm on new arena, entertainment district in Dallas – Dallas News

    Mavs CEO Stands Strong on Vision for New Arena and Entertainment District in Dallas

    Entertainment: On Your Marks, Get Set, Beer Run! – Urban Milwaukee

    Get Ready to Race: The Ultimate Beer Run Experience Awaits!

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    ROLAND’S NEW WIRELESS TRIGGER TECHNOLOGY, PORTER & DAVIES ON TOUR, NEW 64 AUDIO ASPIRE UNIVERSAL IEM MODELS, WAVES FREE PLUGIN PACK – Modern Drummer Magazine

    ROLAND’S NEW WIRELESS TRIGGER TECHNOLOGY, PORTER & DAVIES ON TOUR, NEW 64 AUDIO ASPIRE UNIVERSAL IEM MODELS, WAVES FREE PLUGIN PACK – Modern Drummer Magazine

    This giant microwave may change the future of war – MIT Technology Review

    Revolutionizing Warfare: The Impact of a Game-Changing Giant Microwave

    Bajeed Pattan Joins Forbes Technology Council as Innovation Leader – PRWeb

    Bajeed Pattan Takes the Helm as Innovation Leader at Forbes Technology Council!

    Lafayette Regional Technology Council – Tech Leadership That’s Homegrown and Future-Focused – Discover Lafayette

    Lafayette Regional Technology Council – Tech Leadership That’s Homegrown and Future-Focused – Discover Lafayette

    Drone technology demo in Cambria County showcases future of lifesaving medical deliveries – local21news.com

    Revolutionizing Healthcare: Drone Technology Takes Flight for Lifesaving Medical Deliveries in Cambria County

    Revolutionary Harvesting Technology Promises to Slash CAR-T Manufacturing Costs!

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Chinese spies target vulnerable home office kit to run cyber attacks

July 10, 2024
in Technology
Chinese spies target vulnerable home office kit to run cyber attacks
Share on FacebookShare on Twitter

China’s APT40 is ramping up targeting of victims using vulnerable small and home office networking kit as command and control infrastructure, according to an international alert


Alex Scroxton

By

Alex Scroxton,
Security Editor

Published: 09 Jul 2024 16:57

The China-backed advanced persistent threat (APT) actor tracked as APT40 has been busy evolving its playbook and has recently been observed actively targeting new victims by exploiting vulnerabilities in small office and home office (SoHo) networking devices as a staging post for command and control (C2) activity during their attacks

This is according to an international alert issued by the Five Eyes allied cyber agencies from Australia, Canada, New Zealand, the UK and the US, as well as partner bodies from Germany, Japan and South Korea.

According to the Australian Cyber Security Centre (ACSC), which was the lead agency on the alert, APT40 has repeatedly targeted networks both in Australia and around the world by this method.

In two case studies published by the Australian authorities, APT40 used compromised SoHO devices as operational infrastructure and “last-hop” redirectors during its attacks, although one effect of doing so has been to make their activity somewhat easier to characterise and track.

The agencies described such SoHo networking devices as much easier targets for malicious actors than their large enterprise equivalents.

“Many of these SoHO devices are end-of-life or unpatched and offer a soft target for N-day exploitation,” the Australians said. “Once compromised, SoHO devices offer a launching point for attacks to blend in with legitimate traffic and challenge network defenders.

“This technique is also regularly used by other PRC state-sponsored actors worldwide, and the authoring agencies consider this to be a shared threat.

“APT40 does occasionally use procured or leased infrastructure as victim-facing C2 infrastructure in its operations; however, this tradecraft appears to be in relative decline,” they added.

The ACSC shared details of one APT40 cyber attack to which it responded in August 2022, during which a malicious IP believed to be affiliated with the group interacted with the targeted organisation’s network over a two-month period using a device that likely belonged to a small business or home user. This attack was remediated before APT40 could do too much damage.

Mohammad Kazem, senior threat intelligence researcher at WithSecure, said: “There is no indication that the pace or impact of Chinese government/state-sponsored cyber operations has fallen… instead they have continued to hone and refine their tradecraft. They have shown themselves willing to retire methods and tools that no longer work in favour of new ones, but while their standard TTPs have proved effective, they have happily continued to use them.

“This advisory also highlights a shared and growing trend among PRC actors in recent years to target edge devices via exploitation and leverage compromised devices as part of their network infrastructure and activity. We believe these techniques are consciously employed by these actors to pursue stealthier operations that are more difficult to track and attribute, but also challenge conventional security mechanisms and oversight,” said Kazem.

Noteworthy threat

The APT40 group – which is also known in various supplier matrices as Kryptonite Panda, Gingham Typhoon, Leviathan and Bronze Mohawk – is a highly active group that is likely based in the city of Haikou in Hainan Province, an island off the south coast of China, about 300 miles west of Hong Kong. It receives its tasking from the Hainan State Security Department of China’s Ministry of State Security (MSS).

It was likely one of a number of APTs involved in a 2021 series of cyber attacks orchestrated via compromises in Microsoft Exchange Server. In July of that year, four members of the group were indicted by the US authorities over attacks targeting the aviation, defence, education, government, healthcare, biopharmaceutical and maritime sectors.

This campaign saw APT40 steal intellectual property on submersible and autonomous vehicles, chemical formulae, commercial aircraft servicing, genetic sequencing tech, research on diseases including Ebola, HIV/AIDS and MERS, and information to support attempts to win contracts for China’s state-owned enterprises.

APT40 is considered a particularly noteworthy threat thanks to its advanced capabilities – it is able to quickly transform and exploit proof-of-concepts (PoCs) of new vulnerabilities and turn them on victims, and its team members conduct regular reconnaissance against networks of interest looking for opportunities to use them.

It has been an enthusiastic user of some of the most widespread and notable vulnerabilities of the past few years, including the likes of Log4j – indeed, it continues to find success exploiting some bugs that date as far back as 2017.

The group seems to favour targeting public-facing infrastructure over techniques that require user interaction – such as phishing via email – and places great value on obtaining valid credentials to use in its attacks.

Mitigating an APT40 intrusion

Priority mitigations for defenders include keeping up to date logging, prompt patch management and implementing network segmentation.

Security teams should also take steps to disable unused or unneeded network services, ports or firewalls, implement web application firewalls (WAFs), enforce least privilege policies to limit access, enforce multifactor authentication (MFA) on all internet accessible remote access services, replace end-of-life kit, and review custom applications for potentially exploitable functionality.

Read more on Hackers and cybercrime prevention


U.S. agencies continue to observe Volt Typhoon intrusions

ArielleWaldman

By: Arielle Waldman


Mandiant upgrades Sandworm to APT44 due to increasing threat

ArielleWaldman

By: Arielle Waldman


advanced persistent threat (APT)

KinzaYasar

By: Kinza Yasar


Cozy Bear hijacks SME Microsoft 365 tenants in latest campaign

AlexScroxton

By: Alex Scroxton

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/366592858/Chinese-spies-target-vulnerable-home-office-kit-to-run-cyber-attacks

Tags: Chinesespiestechnology
Previous Post

Computing curriculum leaving digital skills behind, research suggests

Next Post

Hyper-V zero-day stands out on a busy Patch Tuesday

Conservation | Definition, Ecology, Examples, & Facts – Britannica

Unlocking the Secrets of Conservation: Understanding Ecology, Real-World Examples, and Fascinating Facts

June 2, 2025
Invisible radiation leaking from private satellite ‘megaconstellations’ could ruin radio astronomy forever, experts warn – Live Science

Invisible radiation leaking from private satellite ‘megaconstellations’ could ruin radio astronomy forever, experts warn – Live Science

June 2, 2025
Why a science-based climate policy helps business leaders – The World Economic Forum

Unlocking Success: How Science-Based Climate Policies Empower Business Leaders

June 2, 2025
Exercise boosts survival rates in colon cancer patients, study shows – The Lufkin Daily News

How Exercise Can Significantly Improve Survival Rates for Colon Cancer Patients

June 2, 2025
2025 Team USA U20 Wrestling World Team Set – FloWrestling

Meet the Future Stars: Team USA’s U20 Wrestling World Team for 2025 Unveiled!

June 2, 2025
Devin Harjes Dies: ‘Manifest’ & ‘Boardwalk Empire’ Actor Was 41 – WyomingNews.com

Tragic Loss: Devin Harjes, Star of ‘Manifest’ and ‘Boardwalk Empire,’ Passes Away at 41

June 2, 2025
The Trump administration’s report on kids’ health cites made-up scientific studies – NPR

The Trump administration’s report on kids’ health cites made-up scientific studies – NPR

June 2, 2025
Labour pushes ‘military Keynesianism’ to win support for defence spending – The Guardian

Labour pushes ‘military Keynesianism’ to win support for defence spending – The Guardian

June 2, 2025
ROLAND’S NEW WIRELESS TRIGGER TECHNOLOGY, PORTER & DAVIES ON TOUR, NEW 64 AUDIO ASPIRE UNIVERSAL IEM MODELS, WAVES FREE PLUGIN PACK – Modern Drummer Magazine

ROLAND’S NEW WIRELESS TRIGGER TECHNOLOGY, PORTER & DAVIES ON TOUR, NEW 64 AUDIO ASPIRE UNIVERSAL IEM MODELS, WAVES FREE PLUGIN PACK – Modern Drummer Magazine

June 2, 2025
Statewide Hawaii high school surfing closer with passage of funding bill – Spectrum News

Surf’s Up: Hawaii High School Surfing Program Secures Funding Boost!

June 1, 2025

Categories

Archives

June 2025
MTWTFSS
 1
2345678
9101112131415
16171819202122
23242526272829
30 
« May    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (658)
  • Economy (672)
  • Entertainment (21,579)
  • General (15,255)
  • Health (9,715)
  • Lifestyle (675)
  • News (22,149)
  • People (674)
  • Politics (681)
  • Science (15,893)
  • Sports (21,177)
  • Technology (15,660)
  • World (660)

Recent News

Conservation | Definition, Ecology, Examples, & Facts – Britannica

Unlocking the Secrets of Conservation: Understanding Ecology, Real-World Examples, and Fascinating Facts

June 2, 2025
Invisible radiation leaking from private satellite ‘megaconstellations’ could ruin radio astronomy forever, experts warn – Live Science

Invisible radiation leaking from private satellite ‘megaconstellations’ could ruin radio astronomy forever, experts warn – Live Science

June 2, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version