"NSA Warns Defense Contractors of Recent Chinese Government-Backed Hacking"

The National Security Agency (NSA) is warning that defense contractors should be wary of Chinese government-backed hackers who are actively exploiting a multitude of known vulnerabilities. The hackers are specifically going after 25 known vulnerabilities that primarily affect products used for remote access or for external web services.  Vulnerabilities the Chinese hackers are exploiting include those of Pulse Secure VPNs, which could allow attackers to steal victim passwords, as well as F5 Networks’ Big-IP Traffic Management User Interface, Windows Domain Name System servers, a series of flaws in Citrix ADC and Gateway devices, and several others.

Cyberscoop reports: "NSA Warns Defense Contractors of Recent Chinese Government-Backed Hacking"