Global News

Breaking news & current latest Canadian news headlines; national weather forecasts & predictions, local news videos, money and financial news; sports stats and scores.

‘Stay vigilant,’ U.S. warns amid Chinese cyber espionage operation

Click to play video: '‘No physical damage’ to Canadian energy infrastructure amid reports of cyberattacks: Trudeau'

WATCH - 'No physical damage' to Canadian energy infrastructure amid reports of cyberattacks: Trudeau – Apr 11, 2023

The U.S. State Department is warning the private sector, public and Washington to “stay vigilant” amid news of a Chinese state-sponsored cyber espionage operation in the country.

The group dubbed “Volt Typhoon” by Five Eyes’ cybersecurity agencies and Microsoft on Wednesday is performing discrete espionage operations within critical U.S. infrastructure and may target other nations, they warn.

Those operations may be aimed at developing ways to disrupt critical communications between the U.S. and Asia “during future crises,” Microsoft said — a warning that could refer to a potential attack on Taiwan by China, which has indicated it may use military force to bring the democratically governed island under its direct control.

“The U.S. intelligence community assesses that China almost certainly is capable of launching cyberattacks that could disrupt critical infrastructure services within the United States, including oil and gas pipelines and rail systems,” said U.S. State Department spokesperson Matthew Miller on Thursday.

“It’s vital for government, network defenders and the public to stay vigilant. It’s why the U.S. government … has worked with the private sector to prepare defences, prepare private-sector defences, and we will continue to work with our allies and partners to address this critical issue.”

Beijing has rejected assertions that its spies are going after western targets, calling Wednesday’s joint warning a “collective disinformation campaign.”

Microsoft and the agencies, including the Communications Security Establishment (CSE)’s Canadian Centre for Cyber Security, said Volt Typhoon has avoided detection by blending in with normal Windows operations through a series of techniques known as “living off the land.”

The process allows the actor to move through systems by taking advantage of built-in network administration tools, making its actions look like normal activity.

The CSE says Volt Typhoon has been detected only in the U.S. so far, and that no Canadian victims have been reported as of Wednesday.

In its threat intelligence advisory, Microsoft said Volt Typhoon has been active since mid-2021 and has targeted critical infrastructure in Guam and elsewhere in the U.S., including government, communication, information technology, maritime and education sectors, among others.

Researchers at Secureworks, which is an arm of Dell Technologies, told Reuters on Thursday the hackers have been conducting a cyberespionage campaign against military and government targets that would “shed light on U.S. military activities.”

Guam is home to major U.S. military facilities, including Andersen Air Force Base, which would be key to responding to any conflict in the Asia-Pacific region.

That would include a Chinese military attack on Taiwan, which the island’s democratic government has said it is actively preparing for. Taiwan’s foreign minister told Global News last month it was a matter of when, not if, Beijing would launch such a campaign.

China claims Taiwan as its own territory and top-ranking members of the Chinese Communist Party, including President Xi Jinping, have not been shy about their aims to wrestle back control of the island. Xi and his top officials have not ruled out using military force to do so.

Microsoft did not say whether “future crises” was a reference to a potential future invasion by China of Taiwan. None of the allied intelligence agencies, including the CSE, addressed that comment from Microsoft in the joint statement.

The CSE referred questions on the wording to Microsoft, adding it “couldn’t say” what the company was referring to. Microsoft did not respond to a request for comment.

Microsoft said Volt Typhoon actors will cloak themselves within normal network activity and proceed to collect data from their targets, including local network credentials that are then used to “maintain persistence.” The data will also be stored for exfiltration to outside servers.

The company said it had notified targeted or compromised customers and provided them with information on how to “hunt” for the tactics and techniques being used by Volt Typhoon and mitigate any impacts.

But Microsoft also warned that “mitigating this attack could be challenging” because of the “living off the land” techniques being used. It warned that compromised accounts “must be closed or changed” to avoid future attacks.

Chinese foreign ministry spokesperson Mao Ning told reporters the alerts, issued by the United States, Britain, Canada, Australia and New Zealand, were intended to promote their Five Eyes intelligence alliance — and that it was Washington that was guilty of hacking.

“The United States is the empire of hacking,” Mao said.

— with files from Global News’ Sean Boynton and Reuters

cybersecurityMicrosoftcyberattacksCyber AttacksFive EyesCommunications Security EstablishmentCanadian Centre for Cyber SecurityChinese Hackerschina cyber attackChina Hackersvolt typhoonChina Volt TyphoonChinese cyber attacksVolt Typhoon China

Journalistic standards Report an error

© 2023 Global News, a division of Corus Entertainment Inc.

To this day, Bauhaus is considered one of the most significant design styles of all time. Combining aesthetics with functionality, it helps create ...
Останні новини
Zelensky meets with Macron in Chisinau

Zelensky meets with Macron in Chisinau

Ukrainian President Volodymyr Zelensky and French President Emmanuel Macron at a meeting in Chisinau, Moldova, reaffirmed their readiness to develop framework conditions for the start of training of Ukrainian fighter pilots when it is appropriate ...


Ukraine now probably has as many tanks as Russia

As of May 2023, after 16 months of full-scale war against Ukraine, Russia has lost most of its advantage in ground military equipment. In particular, Russia had 3330 tanks before the invasion, as per the Military Balance. Within 14 months, Russia ...

Euromaidan Press

Drone seen flying over Moscow suburb

Drone seen flying over Moscow suburb

Drone seen flying over south western Moscow as Russia accuses Ukraine of 'terrorist' attack #Drone #Moscow #Russia #Shorts SUBSCRIBE to our YouTube channel for more videos: Follow us on Twitter: Like us on Facebook: Follow us on Instagram: Follow ...

Russian tanks blast Ukrainian armoured vehicle o the battlefield.

Russian tanks blast Ukrainian armoured vehicle o the battlefield.

FOOTAGE appears to show Russian tanks blast Ukrainian armoured vehicle o the battlefield. This video was released by the Russian Ministry of Defence (MoD) and allegedly shows forces blowing up Ukrainian vehicles. This footage has not yet been veri...

Florida police arrest 2 in connection with Hollywood beach shooting.

Florida police arrest 2 in connection with Hollywood beach shooting.

Florida police arrested two people in connection with a beachside mass shooting in Hollywood. Authorities are also searching for three people of interest. Nine people were injured during the incident.  » Subscribe to NBC News: » Watch more NBC vid...

Could drone attacks be part of Russia's disinformation campaign? - DW News.

Could drone attacks be part of Russia's disinformation campaign? - DW News.

Moscow's Mayor Sergei Sobyanin said that a drone attack in the capital caused "minor" damage to several buildings but did not cause serious injury to anyone. "All emergency services of the city are at the scene of incidents," Sobyanin said on his ...

11-year-old boy speaks out after being shot by police officer.

11-year-old boy speaks out after being shot by police officer.

11-year-old Aderrien Murry speaks out after he was shot in the chest by an Indianola police officer. The officer shot Murry while he was responding to a domestic disturbance call at the child’s home, according to the Mississippi Bureau of Investig...

This is the same story as 2016: Lauren Wright

This is the same story as 2016: Lauren Wright

Political panelists Scott Bolden and Lauren Wright weigh odds of DeSantis winning the GOP nomination in 2024. #FoxNews Subscribe to Fox News! Watch more Fox News Video: Watch Fox News Channel Live: FOX News Channel (FNC) is a 24-hour all-encompass...