China

Threat group reroutes software updates through hacked network gear

China, cybercrime, cybersecurity, DNS, Don't miss, ESET, News /

Threat group reroutes software updates through hacked network gear 2025-11-19 at 12:02 By Sinisa Markovic Sometimes an attack hides in the most ordinary corner of a network. ESET researchers say a China aligned threat group known as PlushDaemon has been quietly using hacked routers to steer software updates toward its own servers. The discovery shows […]

Threat group reroutes software updates through hacked network gear Read More »

MI5 Warns Lawmakers That Chinese Spies Are Trying to Reach Them via LinkedIn

China, Nation-State, Threat Intelligence /

MI5 Warns Lawmakers That Chinese Spies Are Trying to Reach Them via LinkedIn 2025-11-18 at 18:36 By Associated Press Britain’s domestic intelligence agency warned that Chinese nationals were ”using LinkedIn profiles to conduct outreach at scale” on behalf of the Chinese Ministry of State Security. The post MI5 Warns Lawmakers That Chinese Spies Are Trying

MI5 Warns Lawmakers That Chinese Spies Are Trying to Reach Them via LinkedIn Read More »

Google Says Chinese ‘Lighthouse’ Phishing Kit Disrupted Following Lawsuit  

China, disrupted, Featured, Google, phishing, smishing, Smishing Triad, takedown /

Google Says Chinese ‘Lighthouse’ Phishing Kit Disrupted Following Lawsuit   2025-11-14 at 10:30 By Eduard Kovacs The cybercriminals informed customers that their cloud server was shut down due to complaints. The post Google Says Chinese ‘Lighthouse’ Phishing Kit Disrupted Following Lawsuit   appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Google Says Chinese ‘Lighthouse’ Phishing Kit Disrupted Following Lawsuit   Read More »

CISA Updates Guidance on Patching Cisco Devices Targeted in China-Linked Attacks

alert, China, CISA, Cisco, exploited, Government, Malware & Threats /

CISA Updates Guidance on Patching Cisco Devices Targeted in China-Linked Attacks 2025-11-13 at 17:14 By Ionut Arghire Federal agencies have reported as ‘patched’ ASA or FTD devices running software versions vulnerable to attacks. The post CISA Updates Guidance on Patching Cisco Devices Targeted in China-Linked Attacks appeared first on SecurityWeek. This article is an excerpt

CISA Updates Guidance on Patching Cisco Devices Targeted in China-Linked Attacks Read More »

China’s Cyber Silence is More Worrying Than Russia’s Noise, Chief Cybersecurity Strategist Says

China, Cyberwarfare, Nation-State, Russia /

China’s Cyber Silence is More Worrying Than Russia’s Noise, Chief Cybersecurity Strategist Says 2025-11-12 at 18:37 By Kevin Townsend NTT’s chief cybersecurity strategist Mihoko Matsubara on the new geopolitics of hacking, the “chicken and egg” problem of 5G, and the coming AGI threat to humanity. The post China’s Cyber Silence is More Worrying Than Russia’s

China’s Cyber Silence is More Worrying Than Russia’s Noise, Chief Cybersecurity Strategist Says Read More »

Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit

China, Featured, Google, lawsuit, Lighthouse, phishing, smishing, Smishing Triad /

Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit 2025-11-12 at 15:02 By Eduard Kovacs Google is targeting the threat group known as Smishing Triad, which used over 194,000 malicious domains in a campaign.  The post Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit Read More »

Russia-linked hackers intensify attacks as global APT activity shifts

APT, China, cybercrime, Don't miss, ESET, EU, Europe, News, North Korea, report, Russian Federation /

Russia-linked hackers intensify attacks as global APT activity shifts 2025-11-06 at 14:50 By Anamarija Pogorelec State-aligned hacking groups have spent the past six months ramping up espionage, sabotage, and cybercrime campaigns across multiple regions, according to ESET’s APT Activity Report covering April through September 2025. The research highlights how operations linked to Russia, China, Iran,

Russia-linked hackers intensify attacks as global APT activity shifts Read More »

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491)

Arctic Wolf Networks, China, cyber espionage, Don't miss, government-backed attacks, Hot stuff, News, Trend Micro, vulnerability, Windows /

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491) 2025-10-31 at 17:09 By Zeljka Zorz A Windows vulnerability (CVE-2025-9491, aka ZDI-CAN-25373) that state-sponsored threat actors and cybercrime groups have been quietly leveraging since at least 2017 continues to be exploited for attacks. “Arctic Wolf Labs assesses with high confidence that [the campaign they detected]

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491) Read More »

Major US Telecom Backbone Firm Hacked by Nation-State Actors

China, Featured, hacked, Nation-State, Ribbon Communications, telecoms /

Major US Telecom Backbone Firm Hacked by Nation-State Actors 2025-10-30 at 15:46 By Eduard Kovacs Ribbon Communications provides technology for communications networks and its customers include the US government and major telecom firms.  The post Major US Telecom Backbone Firm Hacked by Nation-State Actors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Major US Telecom Backbone Firm Hacked by Nation-State Actors Read More »

Sanctions won’t stop cyberattacks, but they can still “bite”

China, Don't miss, EU, government-backed attacks, Hot stuff, News, North Korea, RUSI, Russian Federation, Sanctions, tips, UK, USA /

Sanctions won’t stop cyberattacks, but they can still “bite” 2025-10-29 at 16:58 By Zeljka Zorz Sanctions are one of the tools Western governments use when they want to hit back at state-sponsored cyber threat actors. But do they actually work? That’s the question a group of current and former cybersecurity officials, analysts, and researchers tackled

Sanctions won’t stop cyberattacks, but they can still “bite” Read More »

Massive China-Linked Smishing Campaign Leveraged 194,000 Domains

China, phishing, smishing, Smishing Triad /

Massive China-Linked Smishing Campaign Leveraged 194,000 Domains 2025-10-27 at 16:57 By Ionut Arghire The malicious Smishing Triad domains were used to collect sensitive information, including Social Security numbers. The post Massive China-Linked Smishing Campaign Leveraged 194,000 Domains appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Massive China-Linked Smishing Campaign Leveraged 194,000 Domains Read More »

China Accuses US of Cyberattack on National Time Center

China, cyberattack, Cyberwarfare, Featured, NSA /

China Accuses US of Cyberattack on National Time Center 2025-10-20 at 03:58 By Associated Press The Ministry of State Security alleged that the NSA exploited vulnerabilities in the messaging services of a foreign mobile phone brand to steal sensitive information. The post China Accuses US of Cyberattack on National Time Center appeared first on SecurityWeek.

China Accuses US of Cyberattack on National Time Center Read More »

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts 

Big-IP, China, China APT, Data Breaches, F5, Featured, Nation-State, source code /

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts  2025-10-16 at 12:58 By Eduard Kovacs More information has come to light on the cyberattack disclosed this week by F5, including on attribution and potential risks. The post F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts  appeared first on

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts  Read More »

F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data

Big-IP, China, Data Breaches, data theft, F5, Featured, Nation-State, source code /

F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data 2025-10-15 at 18:18 By Eduard Kovacs F5 has not shared too much information on the threat actor, but the attack profile seems to point to China. The post F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data appeared first on

F5 Blames Nation-State Hackers for Theft of Source Code and Vulnerability Data Read More »

Security Firm Exposes Role of Beijing Research Institute in China’s Cyber Operations

China, China APT, Nation-State /

Security Firm Exposes Role of Beijing Research Institute in China’s Cyber Operations 2025-10-07 at 13:34 By Ionut Arghire BIETA and its subsidiary CIII research develop and sell technologies supporting China’s intelligence, counterintelligence, and military operations. The post Security Firm Exposes Role of Beijing Research Institute in China’s Cyber Operations appeared first on SecurityWeek. This article

Security Firm Exposes Role of Beijing Research Institute in China’s Cyber Operations Read More »

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware

APT, China, China APT, espionage, Malware, Nation-State, Net-Star, Phantom Taurus /

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware 2025-10-01 at 16:33 By Ionut Arghire Focused on espionage, the threat actor shares infrastructure with Chinese APTs, but uses different TTPs in attacks. The post Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware Read More »

Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks

ArcaneDoor, China, Cisco, exploited, Featured, firewall, Vulnerabilities, Zero-Day /

Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks 2025-09-26 at 10:20 By Ionut Arghire Leading to remote code execution and privilege escalation, the flaws were exploited on Cisco ASA 5500-X series devices that lack secure boot. The post Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks appeared first on SecurityWeek. This article is an excerpt

Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks Read More »

Chinese Cyberspies Hacked US Defense Contractors

China, China APT, defense, espionage, Nation-State, RedNovember /

Chinese Cyberspies Hacked US Defense Contractors 2025-09-25 at 16:11 By Ionut Arghire RedNovember has been targeting government, defense and aerospace, and legal services organizations worldwide. The post Chinese Cyberspies Hacked US Defense Contractors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chinese Cyberspies Hacked US Defense Contractors Read More »

Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel

China, China APT, Nation-State, UNC5221, Zero-Day /

Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel 2025-09-25 at 15:33 By Eduard Kovacs Google’s Threat Intelligence Group and Mandiant have shared findings on a recent BrickStorm campaign linked to UNC5221. The post Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel appeared first on SecurityWeek. This article

Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel Read More »

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker

APT41, Brass Typhoon, China, China APT, cyberespionage, espionage, Nation-State, Winnti /

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker 2025-09-17 at 15:59 By Ionut Arghire The campaign targeted US government, think tank, and academic entities involved in US-China relations, international trade, and economic policy. The post Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker appeared first on SecurityWeek. This article is an excerpt from

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker Read More »

Scroll to Top