Chinese Hackers Exploit Vulnerability in Internet Companies
A Chinese hacking group has exploited a software bug to breach several internet companies, according to cybersecurity firm Lumen Technologies. This breach involves a previously unknown vulnerability in Versa Director, a platform used by Versa Networks, based in Santa Clara, California.
Impact on U.S. and Indian Firms
The attack impacted four U.S. companies and one Indian company, though their identities remain undisclosed. Versa Networks has urged its customers to update their software to address the vulnerability, acknowledging at least one confirmed exploit by an advanced hacking group.
Volt Typhoon: The Alleged Perpetrators
Lumen's researchers suggest with "moderate confidence" that the hacking campaign, which began around June 12, was executed by a group believed to be backed by the Chinese government, known as Volt Typhoon. This group allegedly targeted internet companies to monitor their customers discreetly. Ryan English from Lumen Technologies noted that such groups rarely use direct methods to infiltrate systems.
Implications and Reactions
Doug Britton from RunSafe Security supports Lumen's findings, stating that the access gained through this vulnerability allows for extensive, undetected surveillance. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added the Versa vulnerability to its list of known exploited vulnerabilities, indicating the seriousness of the threat.
China's Stance
The Chinese Embassy in Washington has not commented on the allegations, while Beijing typically denies involvement in cyberespionage. However, Brandon Wales, former executive director of CISA, highlighted an increase in China's hacking activities, marking a significant escalation.
Concerns Raised by Security Officials
The emergence of Volt Typhoon as a potent threat has raised alarms among U.S. cybersecurity officials. Earlier statements by FBI Director Christopher Wray suggested China's growing capabilities to disrupt U.S. critical infrastructure, emphasizing the need for robust cybersecurity measures globally.
