China

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491)

Arctic Wolf Networks, China, cyber espionage, Don't miss, government-backed attacks, Hot stuff, News, Trend Micro, vulnerability, Windows /

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491) 2025-10-31 at 17:09 By Zeljka Zorz A Windows vulnerability (CVE-2025-9491, aka ZDI-CAN-25373) that state-sponsored threat actors and cybercrime groups have been quietly leveraging since at least 2017 continues to be exploited for attacks. “Arctic Wolf Labs assesses with high confidence that [the campaign they detected] […]

React to this headline:

Loading spinner

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491) Read More »

Major US Telecom Backbone Firm Hacked by Nation-State Actors

China, Featured, hacked, Nation-State, Ribbon Communications, telecoms /

Major US Telecom Backbone Firm Hacked by Nation-State Actors 2025-10-30 at 15:46 By Eduard Kovacs Ribbon Communications provides technology for communications networks and its customers include the US government and major telecom firms.  The post Major US Telecom Backbone Firm Hacked by Nation-State Actors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Major US Telecom Backbone Firm Hacked by Nation-State Actors Read More »

Sanctions won’t stop cyberattacks, but they can still “bite”

China, Don't miss, EU, government-backed attacks, Hot stuff, News, North Korea, RUSI, Russian Federation, Sanctions, tips, UK, USA /

Sanctions won’t stop cyberattacks, but they can still “bite” 2025-10-29 at 16:58 By Zeljka Zorz Sanctions are one of the tools Western governments use when they want to hit back at state-sponsored cyber threat actors. But do they actually work? That’s the question a group of current and former cybersecurity officials, analysts, and researchers tackled

React to this headline:

Loading spinner

Sanctions won’t stop cyberattacks, but they can still “bite” Read More »

Massive China-Linked Smishing Campaign Leveraged 194,000 Domains

China, phishing, smishing, Smishing Triad /

Massive China-Linked Smishing Campaign Leveraged 194,000 Domains 2025-10-27 at 16:57 By Ionut Arghire The malicious Smishing Triad domains were used to collect sensitive information, including Social Security numbers. The post Massive China-Linked Smishing Campaign Leveraged 194,000 Domains appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Massive China-Linked Smishing Campaign Leveraged 194,000 Domains Read More »

China Accuses US of Cyberattack on National Time Center

China, cyberattack, Cyberwarfare, Featured, NSA /

China Accuses US of Cyberattack on National Time Center 2025-10-20 at 03:58 By Associated Press The Ministry of State Security alleged that the NSA exploited vulnerabilities in the messaging services of a foreign mobile phone brand to steal sensitive information. The post China Accuses US of Cyberattack on National Time Center appeared first on SecurityWeek.

React to this headline:

Loading spinner

China Accuses US of Cyberattack on National Time Center Read More »

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts 

Big-IP, China, China APT, Data Breaches, F5, Featured, Nation-State, source code /

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts  2025-10-16 at 12:58 By Eduard Kovacs More information has come to light on the cyberattack disclosed this week by F5, including on attribution and potential risks. The post F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts  appeared first on

React to this headline:

Loading spinner

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts  Read More »

F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data

Big-IP, China, Data Breaches, data theft, F5, Featured, Nation-State, source code /

F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data 2025-10-15 at 18:18 By Eduard Kovacs F5 has not shared too much information on the threat actor, but the attack profile seems to point to China. The post F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data appeared first on

React to this headline:

Loading spinner

F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data Read More »

Security Firm Exposes Role of Beijing Research Institute in China’s Cyber Operations

China, China APT, Nation-State /

Security Firm Exposes Role of Beijing Research Institute in China’s Cyber Operations 2025-10-07 at 13:34 By Ionut Arghire BIETA and its subsidiary CIII research develop and sell technologies supporting China’s intelligence, counterintelligence, and military operations. The post Security Firm Exposes Role of Beijing Research Institute in China’s Cyber Operations appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Security Firm Exposes Role of Beijing Research Institute in China’s Cyber Operations Read More »

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware

APT, China, China APT, espionage, Malware, Nation-State, Net-Star, Phantom Taurus /

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware 2025-10-01 at 16:33 By Ionut Arghire Focused on espionage, the threat actor shares infrastructure with Chinese APTs, but uses different TTPs in attacks. The post Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware Read More »

Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks

ArcaneDoor, China, Cisco, exploited, Featured, firewall, Vulnerabilities, Zero-Day /

Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks 2025-09-26 at 10:20 By Ionut Arghire Leading to remote code execution and privilege escalation, the flaws were exploited on Cisco ASA 5500-X series devices that lack secure boot. The post Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks Read More »

Chinese Cyberspies Hacked US Defense Contractors

China, China APT, defense, espionage, Nation-State, RedNovember /

Chinese Cyberspies Hacked US Defense Contractors 2025-09-25 at 16:11 By Ionut Arghire RedNovember has been targeting government, defense and aerospace, and legal services organizations worldwide. The post Chinese Cyberspies Hacked US Defense Contractors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Chinese Cyberspies Hacked US Defense Contractors Read More »

Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel

China, China APT, Nation-State, UNC5221, Zero-Day /

Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel 2025-09-25 at 15:33 By Eduard Kovacs Google’s Threat Intelligence Group and Mandiant have shared findings on a recent BrickStorm campaign linked to UNC5221. The post Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel Read More »

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker

APT41, Brass Typhoon, China, China APT, cyberespionage, espionage, Nation-State, Winnti /

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker 2025-09-17 at 15:59 By Ionut Arghire The campaign targeted US government, think tank, and academic entities involved in US-China relations, international trade, and economic policy. The post Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker Read More »

Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report 

APT41, China, China APT, cyberespionage, espionage, impersonation, Nation-State, US /

Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report  2025-09-08 at 18:35 By Eduard Kovacs China’s APT41 sent out malicious emails on behalf of Rep. John Moolenaar to collect information ahead of US-China trade talks. The post Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report  appeared first on

React to this headline:

Loading spinner

Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report  Read More »

New threat group uses custom tools to hijack search results

China, cybercrime, ESET, News, threats /

New threat group uses custom tools to hijack search results 2025-09-04 at 12:02 By Anamarija Pogorelec ESET Research has identified a new threat group called GhostRedirector. In June 2025, this group broke into at least 65 Windows servers, mostly in Brazil, Thailand, Vietnam, and the United States. Countries where GhostRedirector victims were detected (Source: ESET)

React to this headline:

Loading spinner

New threat group uses custom tools to hijack search results Read More »

China’s Salt Typhoon Hacked Critical Infrastructure Globally for Years

China, Cyberwarfare, Featured, Salt Typhoon, Threat Intelligence /

China’s Salt Typhoon Hacked Critical Infrastructure Globally for Years 2025-08-28 at 17:21 By Ionut Arghire China-linked APT ‘Salt Typhoon’ exploited known router flaws to maintain persistent access across telecom, government, and military networks, giving Beijing’s intelligence services global surveillance reach. The post China’s Salt Typhoon Hacked Critical Infrastructure Globally for Years appeared first on SecurityWeek.

React to this headline:

Loading spinner

China’s Salt Typhoon Hacked Critical Infrastructure Globally for Years Read More »

China-Linked Hackers Hijack Web Traffic to Deliver Backdoor

China, Malware & Threats, PlugX, UNC6384 /

China-Linked Hackers Hijack Web Traffic to Deliver Backdoor 2025-08-27 at 19:24 By Ionut Arghire Google researchers say China-linked UNC6384 combined social engineering, signed malware, and adversary-in-the-middle attacks to evade detection. The post China-Linked Hackers Hijack Web Traffic to Deliver Backdoor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

China-Linked Hackers Hijack Web Traffic to Deliver Backdoor Read More »

China-linked Murky Panda targets and moves laterally through cloud services

APT, China, Cloud, CrowdStrike, cyber espionage, Don't miss, Hot stuff, News /

China-linked Murky Panda targets and moves laterally through cloud services 2025-08-22 at 17:33 By Zeljka Zorz In its recently released 2025 Threat Hunting Report, Crowdstrike pointed out an interesting trend: a 136% surge in cloud intrusions. A good chunk of this surge is due to “China-nexus adversaries”, Murky Panda (aka Silk Typhoon) among them. Murky

React to this headline:

Loading spinner

China-linked Murky Panda targets and moves laterally through cloud services Read More »

Chinese Researchers Suggest Lasers and Sabotage to Counter Musk’s Starlink Satellites

China, Cyberwarfare, Starlink /

Chinese Researchers Suggest Lasers and Sabotage to Counter Musk’s Starlink Satellites 2025-07-31 at 17:41 By Associated Press Chinese military and cyber researchers are intensifying efforts to counter Elon Musk’s Starlink satellite network, viewing it as a potential tool for U.S. military power across nuclear, space, and cyber domains. The post Chinese Researchers Suggest Lasers and

React to this headline:

Loading spinner

Chinese Researchers Suggest Lasers and Sabotage to Counter Musk’s Starlink Satellites Read More »

Report Links Chinese Companies to Tools Used by State-Sponsored Hackers

China, China APT, Nation-State /

Report Links Chinese Companies to Tools Used by State-Sponsored Hackers 2025-07-31 at 14:59 By Ionut Arghire SentinelLabs connects the dots between prolific Chinese state-sponsored hackers and companies developing intrusion tools. The post Report Links Chinese Companies to Tools Used by State-Sponsored Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Report Links Chinese Companies to Tools Used by State-Sponsored Hackers Read More »

Scroll to Top