Summary
Microsoft has identified a new Chinese state-sponsored hacking group, Storm-0227, targeting U.S. critical infrastructure and government entities.
The group uses spear phishing and exploits software vulnerabilities to deploy off-the-shelf malware to steal sensitive data and login credentials for espionage.
Storm-0227 shares similarities with other Chinese APT groups, including Silk Typhoon and Volt Typhoon, known for targeting sectors like military and telecommunications.
Experts emphasize China’s ongoing espionage against Western governments and industries, with Storm-0227 illustrating a growing trend of nation-state actors using readily available malware tools.
Every major outage is reported to the FCC.