As China continued digital gambit around the world, researchers were warning that hacking operations from monitoring groups has long been developing and blending together. Above all, the attackers are hiding their campaigns more effectively and fading the boundaries between cyber criminals and hacked hacks.
Last year, Revelation shook The US Federal Government that Chinese hacked group is known as Salt Salt Typhoon has violated at least nine large telecommunications of the United States. And the group of Rampage even continues this year In the US and other countries in the world. Meanwhile, the Beijing associated hack group is Volt Volt Typhoon continue ARRIVE Lurk in an important US infrastructure and utilities around the world. Meanwhile, famous flexible corporations called Typhoon with copper are also called APT 41 or Barium, which has been operating in the dark.
Group, which researchers have been monitored from about 2012, quietly continued Wide targeting Around the world in the past year. Brass Typhoon has created a wide network, top researchers see it as a large alliance that attacked everything from one. US Breeding Application ARRIVE Source code and chip design From the semiconductor industry of Taiwan and Even the grid. And in the past year, the group has compromised international organizations in the field of technology and cars, materials, transportation and logistics, media, and more, use, use New toxic and sophisticated software in one piece Sustainable campaigns.
John Hultquist, the head of them is still active and is still developing. However, it is more difficult to assign some of these activities than before, because it is part of a much larger ecosystem in China's activity that has been built in a intentional way to create a great ability.
Typhoon bronze is known for Perform a notable string software Supply chain attacks In the late 2010 and because of shameless Attack on telecommunications At the same time the same time that the group is targeted specifically the call record data. The gangs are also Known for its hybrid activityPerforming hacks suitable to the Chinese state spy funded by the Ministry of Security of China, but also has moonlight in projects that seem to be cyberspace, especially focusing on the video game industry and currency fraud in the game.
Research shows that Typhoon in bronze has continued to operate in recent months with financial crimes Online gambling target The platforms as well as spies Production targeting and energy companies. Its sustainable activity has run in parallel with the campaigns that attracted the recent attention of Salt and Volt Typhoon and analyzed increasingly showing that the hacked activity of China's state -backed state must be considered comprehensively, not only in terms of individual agents.
I think we shouldn't go down to the rabbit pit is salt? Former Director of US Cyber Infrastructure and Cyber Security Agency Jen Easterly told Wired in her last days in that role in January, referring to a series of hacking groups associated with Beijing. At the end of the day, China, as we saw in the reviews from the intelligence community, is the most formidable and persistent cyber threat that we are dealing with.
Hultquist agrees, emphasizing that while monitoring the activities of individual groups is still important, this is increasingly important to defenders for the advantages that hacking attacks and attacks attacks from widespread cooperation.
There was a time when there were very simple indicators telling us who each actor was, and they were extremely active, so it was easy to detect the breaking nature of the activity, he said. A number of APT 41 activities are still performing a number of major activities, but many of its activities have become better and they have made efforts to really avoid our control.
In the end, the researchers said that the most important thing about Brass Typhoon's current activity is that it continues Apace.