"Volt Typhoon Ramps Up Malicious Activity Against Critical Infrastructure"

Volt Typhoon, a China-backed cyber espionage group, is systematically targeting legacy Cisco devices in a sophisticated campaign to expand its attack infrastructure. The threat actor, known for targeting critical infrastructure, has exploited router vulnerabilities from 2019 to infiltrate and control the devices. Researchers from SecurityScorecard's threat intelligence team discovered the activity while conducting additional investigations into recent vendor and media reports about Volt Typhoon infiltrating US critical infrastructure organizations and laying the groundwork for future disruptions. Water utilities, power suppliers, transportation, and communication systems have all been targeted. Organizations in the US, the UK, and Australia have fallen victim to the attacks. This article continues to discuss findings regarding the Volt Typhoon cyber espionage group.

Dark Reading reports "Volt Typhoon Ramps Up Malicious Activity Against Critical Infrastructure"

Submitted by grigby1