Chinese Hackers Compromised Organizations in 70 Nations, Warn US Federal Agencies

The Epoch Times Header

Companies are advised to constantly update their apps and software, and patch known network vulnerabilities to prevent such attacks.

A ransomware group called โ€œGhostโ€ is exploiting the network vulnerabilities of various organizations to gain access to their systems, according to a joint advisory issued by multiple U.S. federal agencies.

โ€œBeginning early 2021, Ghost actors began attacking victims whose internet-facing services ran outdated versions of software and firmware,โ€ the Cybersecurity and Infrastructure Security Agency (CISA) said in the Feb. 19 joint advisory. โ€œGhost actors, located in China, conduct these widespread attacks for financial gain.โ€

The attacks have targeted schools and universities, government networks, critical infrastructure, technology and manufacturing companies, health care, and several small and mid-sized businesses.

โ€œThis indiscriminate targeting of networks containing vulnerabilities has led to the compromise of organizations across more than 70 countries, including organizations in China,โ€ CISA, the FBI, and the Multi-State Information Sharing and Analysis Center said in the advisory.

Ghost actors are also associated with other names such as Cring, Crypt3r, HsHarada, Hello, Wickrme, Phantom, Rapture, and Strike.

The criminals use publicly available code to exploit โ€œcommon vulnerabilities and exposuresโ€ of their targets to secure access to servers. They leverage vulnerabilities in servers running Adobe ColdFusion, Microsoft Exchange, and Microsoft SharePoint.

Threat actors use tools to โ€œcollect passwords and/or password hashes to aid them with unauthorized logins and privilege escalation or to pivot to other victim devices,โ€ the warning read. Attackers typically spend only a few days on their targetโ€™s networks.

The advisory recommended that organizations patch known network vulnerabilities by applying โ€œtimely security updatesโ€ to firmware, software, and operating systems.

Organizations must train users to recognize phishing attempts, it said. Entities should identify, investigate, and issue alerts regarding any โ€œabnormal network activity.โ€

โ€œMaintain regular system backups that are known-good and stored offline or are segmented from source systems,โ€ the advisory added.

โ€œGhost ransomware victims whose backups were unaffected by the ransomware attack were often able to restore operations without needing to contact Ghost actors or pay a ransom.โ€

Byย Naveen Athrappully

Read Full Article on TheEpochTimes.com

The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.

Columns

Viewers like you

There is no constitutional authority for any spending on public broadcasting โ€“ period. Any questions: See Article 1, Section 8 of the U.S. Constitution.

Beyond the Trump-Musk fallout?

We are witnessing an unprecedented, unhinged Democrat effort to use lawfare, big Democrat donors, street theater, congressional disruptions, potty-mouth videos, the administrative state, the legacy media, and discredited pollsters to stop the Trump agenda.

Trans-wormal

No worm ever said "I am anthropomorphizing, I am a butterfly" to a toad or flock of geese and expected acknowledgement and support.

In Greenlandโ€™s Icy Capital, Past Troubles Haunt Hopes for the Future

As geopolitical realities and ongoing economic growth raise the stakes, U.S. interest in Greenland and the dream of independence may change things in a big way.

How a Chinese Government Statistician Was Forced to Report Fake Data

Chinese local govt employee produced a non-authorized report on bees and was visited by police and threatened with being sent to a mental hospital.

News

Supreme Court Sides With DOGE in Social Security, Records Cases

The Supreme Court handed DOGE two big wins late on June 6 in its effort to reduce the size of the federal government.

Kilmar Abrego Garcia Returns to US to Face Criminal Charges

Kilmar Abrego Garcia, a citizen of El Salvador, is on his way back to the US, where he will face criminal charges for allegedly smuggling illegal immigrants.

White House Adviser Gives Update on DOGEโ€™s Future Amid Muskโ€“Trump Spat

A top White House adviser said DOGEโ€™s work will likely continue amid a spat between its former chief, Elon Musk, and President Donald Trump.

Trump Administration Asks Supreme Court to Allow Dismantling of Education Department

Trump admin asked Supreme Court to allow it to resume dismantling U.S. Dept of Education, following a lower courtโ€™s previous order halting process.

FTC Warns of Rising Student Loan Scams, Says Fraudsters Took Millions From Borrowers

FTC is warning borrowers to steer clear of student loan debt-relief scams, after shutting down group of companies that allegedly charged millions in illegal fees and left customers worse off.

Walmartโ€™s Drone Delivery Coming to 5 More US Cities

Walmart is set to launch its drone delivery service in five more U.S. cities: Atlanta, Charlotte, Houston, Orlando, and Tampa, the company.

Court Orders Trump Administration to Restore AmeriCorps Funding to States

Federal court ordered Trump admin to restore AmeriCorps funding to states. The ruling comes as part of a lawsuit filed by 24 states and DC.

Tax Deductions You Can Take Without Itemizing

Itโ€™s not always beneficial to itemize. With IRSโ€™s current standard deduction for 2025 most Americans who canโ€™t itemize go with standard deduction.
spot_img

Related Articles