Summary

Microsoft has identified a new Chinese state-sponsored hacking group, Storm-0227, targeting U.S. critical infrastructure and government entities.

The group uses spear phishing and exploits software vulnerabilities to deploy off-the-shelf malware to steal sensitive data and login credentials for espionage.

Storm-0227 shares similarities with other Chinese APT groups, including Silk Typhoon and Volt Typhoon, known for targeting sectors like military and telecommunications.

Experts emphasize China’s ongoing espionage against Western governments and industries, with Storm-0227 illustrating a growing trend of nation-state actors using readily available malware tools.

  • @Rapidcreek
    link
    2019 days ago

    More than 10 years ago, used to oversee a lab filled with telecommunications equipment. The Chinese used to attack that lab on average of 5 times a day. Didn’t get anywhere, though. But it was a pain. They’ve been doing this a long time.

    • @[email protected]
      link
      fedilink
      518 days ago

      Anything to distract people right now, it seems. Like any one individual can do anything about it. Carriers weren’t even transparent on their outages that were likely a result of trying to defend against this.

      • @Rapidcreek
        link
        1
        edit-2
        18 days ago

        Every major outage is reported to the FCC.