The United States, its Western allies and Microsoft reported Wednesday that a Chinese-sponsored cyber agent infiltrated critical infrastructure networks US, and warned that similar activities could be occurring globally.
“The United States and international cybersecurity authorities issue this Joint Cybersecurity Advisory (CSA) to highlight the recent discovery of a cluster of interest activities associated with a PRC state-sponsored cyberagent, also known as Volt Typhoon,” said a statement released by the United States, Australia, Canada, New Zealand and UK.
In another statement, Microsoft indicated that Volt Typhoon (The Volt Typhoon) is active from mid-2021 and targets the critical infrastructure of Guam, a major US military enclave in the Pacific Ocean.
“Microsoft estimates, with moderate confidence, that this Volt Typhoon campaign pursues the development of capabilities that could disrupt critical communications infrastructure between United States and the Asian region during future crises,” he said.
The bulletin added that the affected organizations belong to the communication sectorsmanufacturing, public services, transportation, construction, public administration, education, and information technology, among others.
“The observed behavior suggests that the threatening actor intended to spy and maintain access without being detected for as long as possible.”
The authorities warned in the statement that espionage could be camouflaged in Windows systems.
The director of the United States Cybersecurity and Infrastructure Security Agency, Jen Easterly also posted a warning related to the Volt Typhoon.
“For years, China has carried out operations around the world to steal intellectual property and data confidential critical infrastructure information from organizations around the globe.
“Today’s notice, published in collaboration with our US and international partners, It reflects how China is using highly sophisticated means to attack our nation’s critical infrastructure.”
China did not immediately respond to the allegations. But it consistently denies sponsoring cyberattacks.
In turn, he regularly accuses the United States of cyber espionage.
