Tag: china
-
Tech experts recommend full steam ahead on US export controls for AI
by
in SecurityNewsWhile the efficiency of newer Chinese models like DeepSeek have rumbled U.S. AI markets, experts say previous restrictions on the sale of computer chips and other important components are having an impact. First seen on cyberscoop.com Jump to article: cyberscoop.com/china-deepseek-export-controls-congress-i/
-
Third-party ransomware attack jeopardizes DBS Group, Bank of China Singapore data
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/third-party-ransomware-attack-jeopardizes-dbs-group-bank-of-china-singapore-data
-
Over 5K Ivanti VPNs vulnerable to critical bug under attack
by
in SecurityNewsChina-linked threat actors last month began exploiting CVE-2025-22457, a critical stack buffer-overflow flaw. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/5k-ivanti-vpns-vulnerable-critical-flaw-under-attack/744748/
-
Canada says China-linked information campaign spreading false narratives about prime minister
A China-linked information campaign is using a network of WeChat accounts to attack Canadian Prime Minister Mark Carney ahead of the country’s upcoming federal election, authorities said. First seen on therecord.media Jump to article: therecord.media/canada-says-china-linked-information-campaign-spreading-narriatives-carney-election
-
Chinese ToddyCat abuses ESET antivirus bug for malicious activities
by
in SecurityNewsA range of affected products: The flaw affects all of ESET offerings with the command line scanner which includes an array of products used by power users, IT admins, and enterprise environments.According to the advisory, the affected antivirus versions include ESET NOD32 Antivirus, ESET Internet Security, ESET Smart Security Premium, and ESET Security Ultimate 18.0.12.0…
-
Exploited Vulnerability Puts 5,000 Ivanti VPN Appliances at Risk
by
in SecurityNewsMore than 5,000 Ivanti Connect Secure appliances are vulnerable to attacks exploiting CVE-2025-22457, which has been used by Chinese hackers. The post Exploited Vulnerability Puts 5,000 Ivanti VPN Appliances at Risk appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/exploited-vulnerability-puts-5000-ivanti-vpn-appliances-at-risk/
-
Smishing Triad Expands Fraud Campaign, Targets Toll Payment Services
by
in SecurityNewsA China-based cybercriminal group known as the Smishing Triad is escalating its smishing activities, now targeting consumers in the US and UK with fraudulent text messages related to toll payment services. The Resecurity report reveals that these campaigns involve deceptive text messages that claim unpaid toll bills or payment requests linked to services like FasTrak,…
-
Threat Actors Exploit Toll Payment Services in Widespread Hacking Campaign
by
in SecurityNewsIn a sophisticated cybercrime operation, the Smishing Triad, a China-based group, has been identified as the orchestrator behind a surge in smishing campaigns targeting consumers in the US and UK. These campaigns exploit toll payment services like FasTrak, E-ZPass, and I-Pass, with expectations of expanding globally. The Smishing Triad’s Modus Operandi The group employs fraudulent…
-
Smishing Triad Fuels Surge in Toll Payment Scams in US, UK
by
in SecurityNewsA rise in smishing campaigns impersonating toll service providers has been linked to China’s Smishing Triad First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/smishing-triad-toll-payment-scams/
-
How Trump’s tariffs are shaking up the cybersecurity sector
by
in SecurityNews
Tags: antivirus, ceo, china, cisa, country, cyber, cyberattack, cybersecurity, defense, finance, government, Hardware, infrastructure, microsoft, network, service, supply-chain, technology, threat, vulnerabilityCustomer cutbacks and increased costs are major concerns: In addition to the macroeconomic fears and worries over retaliatory measures, US cybersecurity companies are vulnerable to losing revenue under the new tariffs as customers reduce their cybersecurity budgets to cope with their own tariff-induced financial pressures.”What’s happening is that people are looking at cybersecurity through the…
-
China hits back at America with retaliatory tariffs, export controls on rare earth minerals
by
in SecurityNewsShock and ore, 北京-style First seen on theregister.com Jump to article: www.theregister.com/2025/04/04/china_hits_back_at_trump/
-
Chinese Espionage Group Targeting Legacy Ivanti VPN Devices
by
in SecurityNewsMore Evidence Surfaces of Chinese Hackers Targeting Ivanti Products. A suspected Chinese cyberespionage operation is behind a spate of malware left on VPN appliances made by Ivanti. The threat actor used a critical security vulnerability the Utah company patched in February. We are aware of a limited number of customers whose appliances have been exploited.…
-
CISA warns of latest Ivanti firewall bug being exploited by suspected Chinese hackers
by
in SecurityNewsResearchers attributed exploitation of the vulnerability to a suspected China-based cyberespionage group tracked as UNC5221. First seen on therecord.media Jump to article: therecord.media/cisa-ivanti-firewall-bug-exploitation
-
Chinese Hackers Exploit Ivanti VPN Vulnerability to Deliver Malware Payloads
by
in SecurityNewsIvanti disclosed a critical security vulnerability, CVE-2025-22457, affecting its Connect Secure (ICS) VPN appliances, particularly versions 22.7R2.5 and earlier. This buffer overflow vulnerability enables attackers to achieve remote code execution when exploited successfully. Security researchers from Mandiant and Ivanti have confirmed active exploitation of this vulnerability in the wild, targeting ICS 9.X (end-of-life) and earlier…
-
China-Linked Threat Group Exploits Ivanti Bug
The vendor had originally assessed the flaw as low risk but now says it is a critical issue that enables remote code execution. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/china-linked-threat-group-exploits-ivanti-bug
-
Chinese State Hackers Exploiting Newly Disclosed Ivanti Flaw
by
in SecurityNews
Tags: china, espionage, exploit, flaw, hacker, ivanti, mandiant, remote-code-execution, vulnerabilityMandiant warned that Chinese espionage actor UNC5221 is actively exploiting a critical Ivanti vulnerability, which can lead to remote code execution First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/chinese-state-hackers-ivanti-flaw/
-
China-backed espionage group hits Ivanti customers again
by
in SecurityNewsUNC5221 has a knack for exploiting defects in Ivanti products. The group has exploited at least four vulnerabilities in the vendor’s products since 2023, according to Mandiant. First seen on cyberscoop.com Jump to article: cyberscoop.com/china-espionage-group-ivanti-vulnerability-exploits/
-
China-linked group UNC5221 exploited Ivanti Connect Secure zero-day since mid-March
by
in SecurityNews
Tags: china, exploit, flaw, group, ivanti, remote-code-execution, threat, update, vulnerability, zero-dayIvanti addressed a critical remote code execution flaw in Connect Secure, which has been exploited since at least mid-March 2025. Ivanti released security updates to address a critical Connect Secure remote code execution vulnerability tracked as CVE-2025-22457. The vulnerability has been exploited by a China-linked threat actor since at least mid-March 2025. Ivanti did not disclose…
-
Suspected Chinese spies right now hijacking buggy Ivanti gear for third time in 3 years
by
in SecurityNewsSimple denial-of-service blunder turned out to be a remote unauth code exec disaster First seen on theregister.com Jump to article: www.theregister.com/2025/04/03/suspected_chines_snoops_hijacked_buggy/
-
Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)
by
in SecurityNewsA suspected Chinese APT group has exploited CVE-2025-22457 a buffer overflow bug that was previously thought not to be exploitable to compromise appliances … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/04/03/ivanti-vpn-customers-targeted-via-unrecognized-rce-vulnerability-cve-2025-22457/
-
Ivanti patches Connect Secure zero-day exploited since mid-March
by
in SecurityNews
Tags: china, espionage, exploit, ivanti, malware, remote-code-execution, update, vulnerability, zero-dayIvanti has released security updates to patch a critical Connect Secure remote code execution vulnerability exploited by a China-linked espionage actor to deploy malware since at least mid-March 2025. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ivanti-patches-connect-secure-zero-day-exploited-since-mid-march/
-
Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances
by
in SecurityNewsIvanti misdiagnoses a remote code execution vulnerability and Mandiant reports that Chinese hackers are launching in-the-wild exploits. The post Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/chinese-apt-pounces-on-misdiagnosed-rce-in-ivanti-vpn-appliances/
-
App Stores OK’ed VPNs Run by China PLA
by
in SecurityNewsBad Apple: Chinese firm banned by the U.S. is the shady entity behind a clutch of free VPN apps”, with over a million downloads. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/app-stores-oked-vpns-run-by-china-pla/
-
Experts Warn Congress Another Salt Typhoon Attack Is Coming
by
in SecurityNewsChinese Hackers Are Pre-Positioned, and Top Officials Could Be Making Matters Worse. Experts told lawmakers on Wednesday that without urgent federal action to strengthen cyber defenses and additional efforts to improve the cybersecurity practices of some of the highest ranking government officials, another Salt Typhoon attack could be just around the corner. First seen on…
-
Tackling Chinese cyber threats should be US priority, says ex-NSA head
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/tackling-chinese-cyber-threats-should-be-us-priority-says-ex-nsa-head
-
Latin America targeted with Chinese malware, says Joint Chiefs chair nominee
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/latin-america-targeted-with-chinese-malware-says-joint-chiefs-chair-nominee
-
Asia-Pacific, Latin America subjected to Chinese cyberespionage attacks
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/asia-pacific-latin-america-subjected-to-chinese-cyberespionage-attacks
-
Latest Ivanti bug, paired with malware, earns an alert from CISA
by
in SecurityNewsA recent alert from CISA builds on previous research about a vulnerability in Ivanti products that China-linked hackers have used to insert malware into networks. First seen on therecord.media Jump to article: therecord.media/cisa-alert-ivanti-bug-resurge-malware
-
Surge in Smishing Fueled by Lucid PhaaS Platform
Chinese-Speaking Operators Have Made Lucid a ‘Primary Source’ of Phishing. Security researchers say they expect a surge this year in text message smishing fueled by a phishing-as-a-service platform operated by Chinese-speaking threat actors. Lucid already is a primary source of phishing campaigns targeting users in Europe, the United Kingdom and the United States. First seen…
-
Cybersecurity Professor Faced China-Funding Inquiry Before Disappearing, Sources Say
by
in SecurityNewsA lawyer for Xiaofeng Wang and his wife says they are “safe” after FBI searches of their homes and Wang’s sudden dismissal from Indiana University, where he taught for over 20 years. First seen on wired.com Jump to article: www.wired.com/story/xiaofeng-wang-indiana-university-research-probe-china/