After Ivanti detected the activity, Mandiant says it found malware in impacted devices associated with a Chinese-linked threat group.

Known as Glutton, researchers at QiAnXin’s XLab believe Winnti is responsible for the malware.

The department’s Office of Foreign Assets Control said Guan Tianfeng used a zero-day exploit to deploy malware on 81,000 firewalls.

A report from Trend Micro details the highly sophisticated ways Salt Typhoon carries out its operations.

Maxim Rudometov, who is believed to reside in southern Russia, is not likely to be extradited.

Authorities say they've gained "full access" to the hackers' servers.

The security awareness training company said in a blog post that the software engineer used stolen U.S. credentials and an AI-enhanced photo.

‘Operation Endgame’ targeted well-known malware variants used to facilitate ransomware and other serious cybercrime.

A virus dating to 2015 is still hitting targets in Ukraine, showing its enduring power.  

The group may have been seeking insights on shifting European sentiments on Ukraine, threat analysts suggest.