China Archives

Safe Mode

Chainguard’s Dan Lorenc on the next decade of software supply chain security

Dan Lorenc, CEO and co-founder of Chainguard

7 hours ago By CyberScoop Staff

Silk Typhoon shifted to specifically targeting IT management companies

The Chinese state-backed espionage group started targeting third-party IT services in late 2024, Microsoft researchers said.

12 hours ago By Matt Kapko

US indicts 12 Chinese nationals for vast espionage attack spree

A flurry of unsealed indictments reveal China’s alleged well-coordinated effort to use a hacker-for-hire ecosystem to conduct espionage while obscuring the government’s direct involvement.

1 day ago By Matt Kapko

The Chinese national flag flies outside the Ministry of Foreign Affairs in Beijing on July 26, 2023. (Photo by GREG BAKER/AFP via Getty Images)

It’s not just Salt Typhoon: All China-backed attack groups are showcasing specialized offensive skills

CrowdStrike observed significant growth in China’s offensive cyber capabilities last year as more groups used sector-specific skills to target critical industries and technologies.

Feb 27, 2025 By Matt Kapko

Then-National Security Agency Director Gen. Paul Nakasone arrives for a closed-door hearing in the U.S. Capitol Visitors Center in 2023. (Photo by Chip Somodevilla/Getty Images)

Former NSA, Cyber Command chief Paul Nakasone says U.S. falling behind its enemies in cyberspace

In a wide-ranging speech and interview, Nakasone also talked about Trump administration moves and the shape of cyber offensive operations.

Feb 22, 2025 By Tim Starks

CISA, DHS, Department of Homeland Security, RSA 2019, DHS patching — (Scoop News Group)

No, that’s not the acting head of the Social Security Administration. That’s a former CISA employee.

As CISA removes anti-disinformation personnel, one of its own former employees has fallen victim to a case of mistaken identity.

Feb 21, 2025 By Tim Starks

The Cisco Systems logo is displayed at the Mobile World Congress (MWC) in Barcelona on February 25, 2019. (GABRIEL BOUYS / AFP)

Salt Typhoon gained initial access to telecoms through Cisco devices

The Chinese nation-state threat group primarily gained access to Cisco devices with legitimate login credentials, according to Cisco Talos.

Feb 20, 2025 By Matt Kapko

Cynthia Kaiser, deputy assistant director in the FBI’s cyber division, speaks during CyberScoop’s Zero Trust Summit on Feb. 19, 2025, in Washington, D.C. (Scoop News Group photo)

Salt Typhoon telecom breach remarkable for its ‘indiscriminate’ targeting, FBI official says

Speaking at a conference presented by CyberScoop, Cynthia Kaiser said the impact of the breach could last forever.

Feb 19, 2025 By Tim Starks

Safe Mode

Chainalysis’ Jackie Burns-Koven on the drop in ransomware payments

Jackie Burns-Koven, Head of Cyber Threat Intelligence at Chainalysis

Feb 13, 2025 By CyberScoop Staff

For suspected Chinese hackers, U.S. telecoms represent a tempting target for espionage. (Getty Images)

Salt Typhoon remains active, hits more telecom networks via Cisco routers

The Chinese nation-state threat group intruded five additional telecom networks between December and January, including two unnamed providers in the U.S., Recorded Future researchers said.

Feb 13, 2025 By Matt Kapko