The US intelligence services, together with Microsoft, discovered a Chinese pirate attack with the support of the Beijing government, to critical communications systems in the United States of America.
He is concerned that part of the defense systems operated in Guam in the western Pacific, where the United States has a key base. help Taiwan.
In a statement, Microsoft says it has “detected stealthy and targeted malicious activity post-breach credential access and discovery of network systems on critical infrastructure in the United States.” “The attack was done Volt Typhoon a China-based state-sponsored actor that typically focuses on research and intelligence gathering,” he added in a statement.
Now, it’s just an intrusion case and no sabotage or damage occurred. But Typhoon Volt could disrupt critical communications infrastructure between the United States and the Asian region in a future crisis with China.
How does the Volt Typhoon work?
Volt Typhoon from 2021. Its active target is critical infrastructure in Guam and other locations in the United States of America. In this cyberattack those affected were communication services, manufacturing, public services, transportation, construction, maritime, government, information technology and education. “Volt does the work of explorers. It maintains access to unobserved infrastructure as long as possible,” explains Microsoft.
His computer attack is very stealthy because It is very difficult to detect the techniques he uses. Group members issue commands that allow them to collect data, including local system and network credentials. They then store the information on a file and use the stolen credentials for a cyber attack.
Also, try the Volt Typhoon side with the normal activity itself routing data traffic through home office equipment (SOHOs), including routers, firewalls, and hardware VPNs (virtual private networks).
Security and intelligence agencies from the United States, the United Kingdom, Australia and New Zealand participated in the investigation.