Chinese Hackers Hit US Infrastructure at Home and Abroad

Chinese Hackers Hit US Infrastructure at Home and Abroad

Tensions are running high between the US and China. Rhetoric has increasingly intensified between the world’s sole superpower, and a rising upstart.

Beef over the Taiwanese sovereignty has always been a lingering diplomatic minefield. Economics, trade, and cash were the ways the US and China smoothed over their differences but that’s no longer the case.

An obsession with TikTok, skimishes over crypto, and battle for technological dominance have led to increased hacking attempts while diplomatic fights brewed.

What Happened?

Microsoft has been actively tracking a Chinese government hacking group called Volt Typhoon.

Volt Typhoon has infiltrated government networks, telecommunications infrastructure, and military bases. The hacker group has been sending credentials and sensitive information back to the People’s Republic of China.

Microsoft says the group has been targeting and infiltrating infrastructure in the US and Guam. Guam is a key military waypoint for US operations in the Pacific. Guam will prove pivotal for any military engagements over the Taiwanese impasse.

Volt Typhoon has remained under the radar by eschewing automation and instead have been manually executing commands on compromised hardware. This technique, not using automated bots and software as attack vectors, is known as living-off-the-land.

How to Protect Yourself

The hackers have circumvented computer networks using FortiGuard network routers and firewalls as a jumping off point. They defeated device security by exploiting systems that were not patched or were configured improperly.

If you use FortiGuard devices, you can protect yourself by keeping your devices up-to-date by installing the latest security patches, changing default passwords, and enabling security settings.

Stay Frosty

Whether you’re at home or at work, keep your systems updated and frequently change your passwords. Volt Typhoon has been stealing Active Directory account information and using small/home office routers as jumping off points.