On December 16, the United States government released a statement that hackers affiliated with the governments of China, North Korea and Turkey decided to exploit a serious vulnerability in software used by major technology companies in the United States. whole world.
Experimenting with the flaw, integrating into established hacking tools, and “exploiting against targets to achieve actor goals” are among the activities carried out by foreign hacker groups, as CNN reports.
A software vulnerability was recently discovered, according to the US Agency for Cybersecurity and Infrastructure Security (CISA) and it could compromise hundreds of millions of devices around the world.
In response to the threat, CISA called on all federal and civil entities to upgrade their software. The vulnerability is found in the Java program “Log4j”, which is used by companies around the world to store data in their applications. From Cisco to Amazon Web Services to IBM, the list of vulnerable software vendors reads like a who’s who of tech giants. Despite US officials being on high alert due to the weakness of the software, Eric Goldstein, a senior CISA officer, told media there was no evidence that federal networks were hacked using this vulnerability.
Earlier this year, the US, UK and their allies publicly blamed the Microsoft Exchange intrusion on Chinese government actors, accusing the Chinese government of a wide range of “malicious cyber actions”, escalating tensions between the White House and Beijing. According to this coalition of nations, the Chinese government is behind several malicious ransomware, data theft and cyber espionage attacks against public and commercial companies, including the massive Microsoft Exchange compromise earlier this year. The attack was attributed to China by Australia, Canada, New Zealand, Japan and NATO, marking the first time that the North American-European alliance has condemned China’s cyber actions, according to a senior official in the Biden administration.
According to a public statement by the European Union, the statement was added to a long list of disagreements between the United States and China, including economic, military and political concerns. Between 2011 and 2018, the United States prosecuted four Chinese citizens linked to the Department of State Security for hacking into the computer systems of dozens of businesses, universities and government institutions in the United States and the United States. ‘foreigner. The indictment claimed the hackers also targeted the development of an Ebola vaccine, among others.
Chinese policymakers have been even more baffled by the US administration’s decision to maintain the tariffs set by former President Donald Trump, as well as its support for the reopening of an investigation into how the epidemic of Covid-19 has started – and if it’s from a Wuhan lab. The United States hopes to demonstrate how China’s State Security Ministry is deploying criminal hackers to undertake unauthorized cyber operations around the world, including for personal gain, in a recently released report.
China has always maintained that it is a victim of cyber attacks rather than a perpetrator. The National Security Agency, the Cybersecurity and Infrastructure Security Agency, and the Federal Bureau of Investigation have detailed more than 50 tactics used by Chinese state-sponsored cyber hackers to attack U.S. and allied networks, including emails from phishing with malicious attachments, application exploitation, and compromise behind the wheel, as part of this program.