Microsoft has issued a warning about Chinese state-sponsored hackers, called “Volt Typhoon”, who have been successful in breaching critical US cyber infrastructure across various industries with the goal of gathering intelligence. The hackers’ focus is on disrupting communication infrastructure between the US and Asia, in order to maintain undetected access for espionage purposes rather than causing immediate disruption.
The impacted organizations are advised to take action by closing or changing compromised account credentials. Microsoft has stated that Chinese state-sponsored hackers have launched a relentless campaign of cyber attacks on crucial US infrastructure. The audacious group, operating under the name “Volt Typhoon” since mid-2021, has successfully breached multiple industries, with a primary focus on intelligence gathering.
The ongoing assault aims to disrupt vital communication infrastructure between the US and Asia, which could hinder response efforts during potential future crises. Microsoft urgently advises impacted entities to fortify their defenses by swiftly closing or changing compromised account credentials. By exploiting a clandestine vulnerability within the widely-used FortiGuard cybersecurity suite, Volt Typhoon infiltrates corporate systems, pilfering user credentials to infiltrate other crucial networks.
Rather than causing immediate chaos, the group’s insidious intent lies in conducting covert espionage and stealthily maintaining access for extended periods without detection. Microsoft warns that the impact of these attacks has reverberated throughout numerous critical sectors, including communications, transportation, maritime industries, and government organizations.