The Threat CodexFeb 15
Beyond the Battlefield: Threats to the Defense Industrial Base
#UNC3886 #UNC5221 #APT44 #TEMP.Vermin #UNC5125 #UNC5792 #UNC4221 #UNC5976 #UNC5114 #APT45 #APT43 #UNC2970 #UNC1549 #UNC6446 #APT5 #HeavenOfTheSlavs #APT1 #APT40 #VoltTyphoon #UNC6508 #UNC5203 #UNC5318
https://cloud.google.com/blog/topics/threat-intelligence/threats-to-defense-industrial-base
Threats to the Defense Industrial Base | Google Cloud Blog

The defense sector faces a relentless barrage of operations conducted by state-sponsored actors and criminal groups.

Google Cloud Blog
TechNaduOct 14

ACSC’s latest report shows an 11% rise in incidents and a sharp increase in cybercrime costs.

APT40 and BianLian remain key threats to Australian critical sectors.

Full story: https://www.technadu.com/australian-cyber-threat-report-11-increase-in-incident-rate-state-sponsored-actors-continue-to-be-a-threat/611391/

#CyberSecurity #APT40 #Australia #ACSC #ThreatIntelligence #TechNadu

CyberProMagazineJul 17, 2024
✔Global Cybersecurity Agencies Issue Joint Advisory on APT40 Cyber Espionage Threat
Australia, Canada, Germany, Japan, New Zealand, South Korea, the U.K., and the U.S. have issued a joint advisory highlighting the persistent threat posed by APT40 Cyber Espionage , for more information read
For More Information
📕Read- https://cybrpro.com/apt40-cyber-espionage/
and get insights
#Cybersecurity #APT40 #Espionage #Threat #JointAdvisory #Cyberpromagazine
APT40 Cyber Espionage Threat: Cybersecurity Agencies Issue | CyberPro Magazine

Australia, Canada, Germany, Japan, New Zealand, South Korea, the U.K., and the U.S. have issued a joint advisory highlighting the persistent threat posed by APT40 Cyber Espionage , for more information read

CyberPro Magazine
Brad SnyderJul 11, 2024

NSA Publishes Case Studies on PRC Tradecraft
https://intelligencecommunitynews.com/nsa-publishes-case-studies-on-prc-tradecraft/

#Cybersecurity
#APT40

NSA publishes case studies on PRC tradecraft - Intelligence Community News

On July 8, the National Security Agency (NSA) joined the Australian Signals Directorate (ASD) and other agencies to publish a Cybersecurity Advisory (CSA) detailing the tradecraft used by a cyber actor group associated with the People’s Republic of China (PRC) Ministry of State Security (MSS).

Intelligence Community News
CyberEd Jul 10, 2024
Here is a cautionary notice from the #ASD regarding #APT40 / PRC MSS operations. It provides valuable insights into the tactics, techniques, and procedures of the threat actor. It is a fascinating document that sheds light on the activities of APT40/PRC MSS. #Threatactor #ttp #advisory > Cyber.gov.au https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/apt40-advisory-prc-mss-tradecraft-in-action
securityaffairsJul 10, 2024
Multiple cybersecurity agencies warn of #China-linked #APT40's capabilities
https://securityaffairs.com/165491/breaking-news/apt40-china-joint-report.html
#securityaffairs #hacking #APT
Cybersecurity agencies warn of China-linked APT40 's capabilities

Multiple cybersecurity agencies released a joint advisory warning about a China-linked group APT40 's capability to rapidly exploit disclosed security flaws.

Security Affairs
Anonymous 🐈️🐾☕🍵🏴🇵🇸 Jul 9, 2024
Chinese #APT40 hackers hijack SOHO routers to launch attacks #CyberAttack #cybersecurity #ProxyLogon https://www.bleepingcomputer.com/news/security/chinese-apt40-hackers-hijack-soho-routers-to-launch-attacks/
Chinese APT40 hackers hijack SOHO routers to launch attacks

An advisory by CISA and multiple international cybersecurity agencies highlights the tactics, techniques, and procedures (TTPs) of APT40 (aka "Kryptonite Panda"), a state-sponsored Chinese cyber-espionage actor.

BleepingComputer
The Threat CodexJul 9, 2024
People’s Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action
#APT40
https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-190a
Danny PalmerJul 9, 2024

Chinese state-backed threat group group #APT40 called out for hacking campaigns which use small-office and home-office devices as a launching pad for attacks

"The NCSC has issued an advisory alongside partners in Australia, the US, Canada, New Zealand, Germany, the Republic of Korea and Japan, focusing on how one China state-sponsored cyber actor has carried out attacks against Australian networks.

"The threat group APT40 has embraced the trend of exploiting vulnerable small-office and home-office (SoHo) devices as a launching pad for attacks. These devices are softer targets when they are not running the latest software, or are no longer supported with security updates, and they more easily conceal malicious traffic." #infosec

https://www.ncsc.gov.uk/news/ncsc-and-partners-issue-alert-about-evolving-techniques-used-by-china-state-sponsored-cyber-attacks

The NCSC and partners issue alert about evolving techniques used by China state-sponsored cyber attackers

APT40 is one of the cyber actors that has embraced the trend of using SoHo devices to launch attacks

ottotoJul 9, 2024

#中国#APT40 ギャングは、 #脆弱性 が公開されてから数時間から数日以内に攻撃する準備ができています。」: The Register

「APT40を「 #国家支援のサイバーグループ 」、中華人民共和国(中華人民共和国)がそのスポンサーであると説明している。 この勧告を作成した機関(オーストラリア、米国、カナダ、ニュージーランド、日本、韓国、英国、ドイツ)は、APT40が「 #中国国家安全省#MSS )のために #悪意のある #サイバー作戦 を行っている」と考えている。」

中国政府は他国を侵害しようとしている点、容認できない。

https://www.theregister.com/2024/07/09/apt_40_tradecraft_advisory/

#prattohome #TheRegister

China's APT40 gang is ready to attack vulns within hours or days of public release

Lax patching and vulnerable small biz kit make life easy for Beijing's secret-stealers

The Register