Press ESC to close

U.S. Treasury Sanctions Beijing Cybersecurity Firm for State-Backed Hacking Campaigns

Category Details
Threat Actors Flax Typhoon (also known as Ethereal Panda or RedJuliett), a Chinese state-sponsored cyber actor.
Campaign Overview Sanctions issued against Integrity Technology Group for supporting Flax Typhoon’s cyber campaigns targeting various global entities.
Target Regions (Or Victims) North America, Europe, Africa, Asia; U.S. government systems, corporations, universities, telecommunications, and media organizations.
Methodology • Exploits known vulnerabilities to gain initial access.
• Uses legitimate remote access software for persistence.
Product Targeted U.S. government systems, foreign corporations, telecommunications, and media organizations.
Malware Reference No specific malware mentioned; uses legitimate remote access software for ongoing attacks.
Tools Used • Exploited vulnerabilities.
• Legitimate remote access software for persistence.
Vulnerabilities Exploited Known vulnerabilities to gain initial access to victim systems.
TTPs • Use of known vulnerabilities for access.
• Remote access tools for persistent control.
Attribution Directly attributed to Flax Typhoon, a Chinese state-sponsored group with ties to the PRC Ministry of State Security.
Recommendations • Strengthen public and private sector cyber defenses.
• Use available tools to disrupt and mitigate threats.
Source The Hackers News

Read full article: https://thehackernews.com/2025/01/us-treasury-sanctions-beijing.html

The above summary has been generated by an AI language model

Stay Updated with Our Newsletter

  

Source: TheHackersNews

Published on: January 5, 2025

Leave a Reply

Your email address will not be published. Required fields are marked *