Chinese Hackers Compromised Organizations in 70 Nations, Warn US Federal Agencies

Contact Your Elected Officials
The Epoch Times Header

Companies are advised to constantly update their apps and software, and patch known network vulnerabilities to prevent such attacks.

A ransomware group called “Ghost” is exploiting the network vulnerabilities of various organizations to gain access to their systems, according to a joint advisory issued by multiple U.S. federal agencies.

“Beginning early 2021, Ghost actors began attacking victims whose internet-facing services ran outdated versions of software and firmware,” the Cybersecurity and Infrastructure Security Agency (CISA) said in the Feb. 19 joint advisory. “Ghost actors, located in China, conduct these widespread attacks for financial gain.”

The attacks have targeted schools and universities, government networks, critical infrastructure, technology and manufacturing companies, health care, and several small and mid-sized businesses.

“This indiscriminate targeting of networks containing vulnerabilities has led to the compromise of organizations across more than 70 countries, including organizations in China,” CISA, the FBI, and the Multi-State Information Sharing and Analysis Center said in the advisory.

Ghost actors are also associated with other names such as Cring, Crypt3r, HsHarada, Hello, Wickrme, Phantom, Rapture, and Strike.

The criminals use publicly available code to exploit “common vulnerabilities and exposures” of their targets to secure access to servers. They leverage vulnerabilities in servers running Adobe ColdFusion, Microsoft Exchange, and Microsoft SharePoint.

Threat actors use tools to “collect passwords and/or password hashes to aid them with unauthorized logins and privilege escalation or to pivot to other victim devices,” the warning read. Attackers typically spend only a few days on their target’s networks.

The advisory recommended that organizations patch known network vulnerabilities by applying “timely security updates” to firmware, software, and operating systems.

Organizations must train users to recognize phishing attempts, it said. Entities should identify, investigate, and issue alerts regarding any “abnormal network activity.”

“Maintain regular system backups that are known-good and stored offline or are segmented from source systems,” the advisory added.

“Ghost ransomware victims whose backups were unaffected by the ransomware attack were often able to restore operations without needing to contact Ghost actors or pay a ransom.”

By Naveen Athrappully

Read Full Article on TheEpochTimes.com

The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.

Five Reasons Why The Latest Czech Elections Were So Important

Populist-nationalist politician Andrej Babis is poised to return to the premiership after his party's victory. Here are 5 reasons why this is so important.

Bad Bunny is the NFL’s Latest Insult

After years of advocating social justice causes, the NFL chose left wing, gender fluid rapper Bad Bunny to headline the next Super Bowl. Does the NFL want conservatives fans?

Scheduling collides with legacy

The ACC’s footprint now sprawls from Boston and Miami to Salt Lake City and the San Francisco Bay, defying both geography and its own name.

The Paradoxical Patriot: The political odyssey of Frank S. Meyer

In his book, Daniel J. Flynn examines the ideological evolution of one of conservatism’s most paradoxical and overlooked architects, Frank S. Meyer. 

This Is America: Target™ Reparations

“This Is America” explores the cultural undercurrents pulling Western...

Judge Upholds Nassau County Ban on Transgender Athletes in Women’s Sports

A New York judge on Oct. 6 upheld a Long Island county law banning male athletes from participating in women’s sports at county-run facilities.

Takeaways From Pam Bondi’s Testimony Before Senate Panel

AG Pam Bondi testified before the Senate Judiciary Committee, defending some of the Justice Department’s moves while sparring with Democratic senators.

FBI Surveilled 8 GOP Members of Congress, Document Shows

The FBI surveilled Republican senators as part of its Arctic Frost investigation, a newly disclosed document shows.

Acting CDC Director Calls on Manufacturers to Break MMR Vaccine Into Separate Shots

A commonly used combination vaccine against measles should be replaced with separate shots, the acting director of the CDC said on Oct. 6.

Trump Says He May Invoke Insurrection Act in Portland If Necessary

President Donald Trump on Oct. 6 said he may consider invoking the Insurrection Act in Portland, Oregon, if necessary.

Trump: All Medium, Heavy Duty Trucks Entering US Will See 25 Percent Tariff on Nov. 1

President Trump announced on Monday that all medium and heavy-duty trucks entering the United States will see a 25 percent tariff starting on Nov. 1.

Treasury Names Social Security Commissioner as CEO of IRS

Treasury Sec. Scott Bessent announced that Frank Bisignano, the head of the Social Security Administration (SSA), will also serve as CEO of the IRS.

Agencies Terminated, Descoped 94 Wasteful Contracts With $8.5 Billion Ceiling Value, Says DOGE

Various federal government agencies have terminated and descoped 94 wasteful contracts over the past five days, DOGE said in an Oct. 4 post on X.
spot_img

Related Articles

Popular Categories

MAGA Business Central