Summary
Microsoft has identified a new Chinese state-sponsored hacking group, Storm-0227, targeting U.S. critical infrastructure and government entities.
The group uses spear phishing and exploits software vulnerabilities to deploy off-the-shelf malware to steal sensitive data and login credentials for espionage.
Storm-0227 shares similarities with other Chinese APT groups, including Silk Typhoon and Volt Typhoon, known for targeting sectors like military and telecommunications.
Experts emphasize China’s ongoing espionage against Western governments and industries, with Storm-0227 illustrating a growing trend of nation-state actors using readily available malware tools.
More than 10 years ago, used to oversee a lab filled with telecommunications equipment. The Chinese used to attack that lab on average of 5 times a day. Didn’t get anywhere, though. But it was a pain. They’ve been doing this a long time.
Anything to distract people right now, it seems. Like any one individual can do anything about it. Carriers weren’t even transparent on their outages that were likely a result of trying to defend against this.
Every major outage is reported to the FCC.