Chinese Hackers Compromised Organizations in 70 Nations, Warn US Federal Agencies

5Mind. The Meme Platform
The Epoch Times Header

Companies are advised to constantly update their apps and software, and patch known network vulnerabilities to prevent such attacks.

A ransomware group called “Ghost” is exploiting the network vulnerabilities of various organizations to gain access to their systems, according to a joint advisory issued by multiple U.S. federal agencies.

“Beginning early 2021, Ghost actors began attacking victims whose internet-facing services ran outdated versions of software and firmware,” the Cybersecurity and Infrastructure Security Agency (CISA) said in the Feb. 19 joint advisory. “Ghost actors, located in China, conduct these widespread attacks for financial gain.”

The attacks have targeted schools and universities, government networks, critical infrastructure, technology and manufacturing companies, health care, and several small and mid-sized businesses.

“This indiscriminate targeting of networks containing vulnerabilities has led to the compromise of organizations across more than 70 countries, including organizations in China,” CISA, the FBI, and the Multi-State Information Sharing and Analysis Center said in the advisory.

Ghost actors are also associated with other names such as Cring, Crypt3r, HsHarada, Hello, Wickrme, Phantom, Rapture, and Strike.

The criminals use publicly available code to exploit “common vulnerabilities and exposures” of their targets to secure access to servers. They leverage vulnerabilities in servers running Adobe ColdFusion, Microsoft Exchange, and Microsoft SharePoint.

Threat actors use tools to “collect passwords and/or password hashes to aid them with unauthorized logins and privilege escalation or to pivot to other victim devices,” the warning read. Attackers typically spend only a few days on their target’s networks.

The advisory recommended that organizations patch known network vulnerabilities by applying “timely security updates” to firmware, software, and operating systems.

Organizations must train users to recognize phishing attempts, it said. Entities should identify, investigate, and issue alerts regarding any “abnormal network activity.”

“Maintain regular system backups that are known-good and stored offline or are segmented from source systems,” the advisory added.

“Ghost ransomware victims whose backups were unaffected by the ransomware attack were often able to restore operations without needing to contact Ghost actors or pay a ransom.”

By Naveen Athrappully

Read Full Article on TheEpochTimes.com

Contact Your Elected Officials
The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.

Ring That Bell

If I could travel back in time to 1776,...

Thoughts On America 250

Before you, American reader, is the honor, blessing, and privilege of celebrating the 250th anniversary of our nation. A nation toward which God has been merciful, shining His great grace.
00:09:03

Two birthdays apart

The Bicentennial was not just a commemoration of 200 years of independence – it was a coast‑to‑coast block party of red, white and blue.
00:02:31

Is Charlie Kirk’s Assassination Looking More Like a Conspiracy?

Enough videos have been posted to the internet, plenty...

Is There a 9/11 WTC and 9/10 Charlie Kirk Connection?

Strange parallels in online stories raise questions about whether Israelis and Mossad intelligence are our allies or adversaries.

xAI Rebrands as SpaceXAI, Launches New Grok 4.5 Model

xAI has officially rebranded itself as SpaceXAI and has a new logo, the company recently announced on X.
00:18:20

Sen. Lindsey Graham Dies at 71

Sen. Lindsey Graham (R-S.C.) died from a “brief and sudden illness” Saturday evening, his office said in a statement.

DOJ Subpoenas NYT Journalists After Air Force One Security Report

The NYT said the DOJ issued subpoenas to its journalists after the NYT reported on alleged security concerns involving the new, Qatari-gifted Air Force One.
00:02:36

Federal Judge Rejects Transgender Health Nonprofit Bid to Halt FTC Lawsuit in Texas

A federal judge let stand an FTC lawsuit alleging a transgender health nonprofit made misleading claims about gender-affirming care for minors.

Trump Warns of Global Spread of Communism at NATO Summit

President Trump reiterated his warnings about communism during the NATO summit in Ankara on July 8, saying he believes it’s taking root in the US and around the world.

Trump Arrives in Ankara to Meet With NATO Allies

It marks the first visit to Turkey by a...
00:01:40

President Launches Trump Accounts for Children With Historic Opening of NYSE, NASDAQ

President Trump rang a bell to open the New York Stock Exchange and NASDAQ during an Oval Office ceremony to launch accounts for children across the nation.

Trump Shares New US Passport Design on Truth Social

The mockup shows limited-edition passports planned for a July...
spot_img

Related Articles

Popular Categories

MAGA Business Central