Cybersecurity Firm Warns of New Cyber Espionage Tactic by Chinese Hackers

Contact Your Elected Officials
The Epoch Times Header

Chinese state-backed hackers took advantage of outdated hardware and software to access routers and take over computer networks.

A Chinese hacker group is targeting routers made by a major U.S. manufacturer, taking advantage of outdated software and hardware to hijack routers and access computer networks, a cybersecurity firm warned Wednesday.

It’s a new tactic in an increasingly sophisticated cybercrime landscape, according to the firm.

Mandiant, a Google subsidiary known for outing Chinese hackers, reported in a blog post March 12 that the state-backed hacker group UNC3886 targeted routers made by Juniper Networks.

The Silicon Valley-based tech company is a main competitor to Cisco, the leader in the U.S. router market. While many Juniper products are manufactured in China and other parts of Southeast Asia, most of its higher-end products are assembled in North America.

In mid-2024, Mandiant found that attackers had deployed a program that accessed victims’ computers by disabling login mechanisms.

Once in the system, the program could carry out active backdoor functions, which directly interfered with the system, or passive backdoor functions—“eavesdropping” or gathering information.

Mandiant noted that the back doors were based on an open-source, low-maintenance program named TINYSHELL.

According to Mandiant, the vulnerability that enabled the intrusions was the use of routers running outdated or “end-of-life” hardware and software.

A New Tactic

Mandiant noted that in 2022 and 2023, it reported that hacker group UNC3886 had breached server software such as VMware ESXi, Linux vCenter servers, and Windows virtual machines.

Wednesday’s blog post described “a development in UNC3886’s tactics, techniques and procedures,” and a focus on devices that may lack security monitoring and detection solutions.

Compromising routing devices is a new espionage tactic, the report said, “as it grants the capability for a long-term, high-level access to the crucial routing infrastructure, with a potential for more disruptive actions in the future.”

Mandiant described UNC3886 as “highly adept.” The hacker group’s modus operandi is to acquire “legitimate credentials” and use them to operate undetected.

Historically, the group has targeted network devices and virtualization technologies with “zero-day exploits,” cyber attacks that take advantage of previously unknown vulnerabilities in software, hardware, or firmware before vendors have a chance to patch them.

By Dave Malyon

Read Full Article on TheEpochTimes.com

The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.

The Paradoxical Patriot: The political odyssey of Frank S. Meyer

In his book, Daniel J. Flynn examines the ideological evolution of one of conservatism’s most paradoxical and overlooked architects, Frank S. Meyer. 

This Is America: Target™ Reparations

“This Is America” explores the cultural undercurrents pulling Western...

Blind Man’s Shutdown

Congress is playing the equivalent of Bind Man's Bluff. With the shout “tag your it” they seek to blame the other party for the government shutdown.

A Reluctant Acknowledgment: What Conservatives Can Admire in Everyday Progressives

Admirable ideological qualities seen in liberals and left-wing individuals are those of the everyday believer not their political leadership.

Ensuring Domestic Tranquility

The Supremacy Clause in Article VI of the U.S. Constitution establishes it as the highest law of the land, taking precedence over conflicting state laws.

Hegseth Says Military Has Every Authorization Needed for Strikes on Drug Boats

Defense Sec. Pete Hegseth said the U.S. military is authorized to strike drug-running boats off Venezuela’s coast in the Caribbean Sea.

White House Official Says Layoffs Will Start Soon If Shutdown Talks Go Nowhere

Kevin Hassett said layoffs to federal workforce could occur quickly if negotiations with Democrats to reopen the government don’t lead to progress.

20 Teachers in California Facing Disciplinary Action for Posts on Charlie Kirk

California school districts move to discipline teachers for derogatory social media posts about the assassination of Charlie Kirk.

Trump Coal Boost Gains Momentum as Bids, Land Opened Up

Trump administration accelerates coal expansion with new leases, mine permits, and 13.1 million acres of federal land opened for coal mining.

Department of Energy Cancels $7.5 Billion in Project Funding

The Dept of Energy (DOE) said on Oct. 2 that it had terminated 321 federal grants funding 223 projects, amounting to about $7.56 billion in cuts.

White House Withdraws EJ Antoni’s Nomination to Lead Bureau of Labor Statistics

The White House has withdrawn economist EJ Antoni’s nomination to lead the Bureau of Labor Statistics, the White House confirmed on Sept. 30.

US to Impose 100 Percent Tariffs on Foreign-Made Movies, Trump Says

President Donald Trump announced on Sept. 29 that he will impose a 100 percent tariff on all movies produced outside the United States.

Trump to Host Netanyahu at White House to Discuss Gaza Peace Plan

President Trump will host Israeli Prime Minister Netanyahu at the White House on Sept. 29 to discuss a ceasefire and broader peace plan for Gaza.
spot_img

Related Articles

Popular Categories

MAGA Business Central