U.S. security agencies issued a warning on Wednesday (June 8) that Chinese government-backed cyber hackers had launched attacks on a range of targets around the world, exploiting software vulnerabilities in routers and other network equipment to compromise the network systems of “big communications companies.”
The FBI, the National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) announcement on Tuesday did not mention the names of companies that were hacked by China, but reminded companies to take protective measures to protect their network systems when using network equipment made by network equipment companies.
The announcement mentioned vulnerabilities in 16 models of software produced by ten network equipment companies, including Cisco, Fortinet, Netgear, MikroTik, Pulse Secure, and Citrix. Most of these companies are U.S.
“These devices are often overlooked by cyber defenders who struggle to maintain and keep up with the pace of routine patch software updates for network services and end devices,” the bulletin said. It was the
latest in a series of public briefings from U.S. cybersecurity officials. The Chinese government has denied all allegations of hacking involving China.
The announcement specifically mentioned that small businesses and individual web users are particularly vulnerable, and they will feel insignificant and not noticed by hackers. But in reality, they can easily be targeted by hackers. The announcement suggests that everyone should attach importance to network security and do a good job in network security protection.
The FBI noted earlier this year that China has attacked U.S. cyber systems more than hackers from other countries combined.
“Since 2020, China’s state-sponsored cyber actors have undertaken a wide range of activities to rapidly exploit publicly identified security vulnerabilities,” the circular said. Last
November, Palo Alto Networks, a U.S. cybersecurity firm, released a report accusing a hacking group with ties to China of hacking into nine international organizations. This is part of a global campaign of Chinese hackers who have targeted at least 370 institutions using potentially vulnerable Zoho servers in the U.S. alone and successfully hacked into at least one, the report said.
In its report, The Network said the compromised institutions were involved in areas such as defense, education, energy, health care and technology. The report said the cyberattacks focused on servers used by companies working with the Defense Ministry, using methods and tools consistent with the practices of the Chinese hacking group Emissary Panda. (Courtesy: VOA)