Home Report says Chinese state-sponsored hackers breached US internet providers

Report says Chinese state-sponsored hackers breached US internet providers

tl;dr

  • Cybersecurity researchers say Volt Typhoon, a Chinese hacker group, exploited a zero-day flaw to breach ISPs in the U.S. and India.
  • The vulnerability in Versa Networks software impacted four U.S. entities, with ongoing risks reported.
  • This breach highlights Volt Typhoon's strategy of targeting key infrastructure, potentially threatening U.S. security in conflicts.

Volt Typhoon, a hacker group believed to be state-sponsored by China, exploited a software bug to penetrate American and Indian internet companies, researchers have reported.

Lumen Technologies’ threat research and operations division, Black Lotus Labs, says the hackers have taken advantage of a zero-day flaw to breach four U.S. entities, including internet service providers, and another company in India.

The vulnerability was traced to a Versa Networks server product, with the Black Lotus report expressing “moderate confidence” that Volt Typhoon was the perpetrator. The security researchers believe the incident is likely to be ongoing, with Versa offering patches and other mitigations since the flaw was announced last week.

Versa provides software to manage network configurations used by ISPs and managed service providers. Black Lotus Labs said this makes Versa “a critical and attractive target” for threat actors.

Potential for ‘real-world harm’ if conflict arises with U.S.

If this is the work of Volt Typhoon, it is another example of targeting key communications infrastructure for potential future use. Earlier this year, the U.S. government accused the hackers of infiltrating other crucial American utilities such as water and power grids.

With the group considered to be working on behalf of the Beijing administration, the accumulation of assets and access extends its ability to cause “real-world harm” in the event of any conflict situation with the United States, including an invasion of Taiwan.

“This wasn’t limited to just telecoms, but managed service providers and internet service providers,” Mike Horka, a security researcher who investigated this incident, said to TechCrunch.

Black Lotus Labs confirmed it alerted the US cybersecurity agency CISA to the zero-day vulnerability and the hacking campaign.

Featured image via Ideogram

About ReadWrite’s Editorial Process

The ReadWrite Editorial policy involves closely monitoring the tech industry for major developments, new product launches, AI breakthroughs, video game releases and other newsworthy events. Editors assign relevant stories to staff writers or freelance contributors with expertise in each particular topic area. Before publication, articles go through a rigorous round of editing for accuracy, clarity, and to ensure adherence to ReadWrite's style guidelines.

Graeme Hanna
Tech Journalist

Graeme Hanna is a full-time, freelance writer with significant experience in online news as well as content writing. Since January 2021, he has contributed as a football and news writer for several mainstream UK titles including The Glasgow Times, Rangers Review, Manchester Evening News, MyLondon, Give Me Sport, and the Belfast News Letter. Graeme has worked across several briefs including news and feature writing in addition to other significant work experience in professional services. Now a contributing news writer at ReadWrite.com, he is involved with pitching relevant content for publication as well as writing engaging tech news stories.

Get the biggest tech headlines of the day delivered to your inbox

    By signing up, you agree to our Terms and Privacy Policy. Unsubscribe anytime.

    Tech News

    Explore the latest in tech with our Tech News. We cut through the noise for concise, relevant updates, keeping you informed about the rapidly evolving tech landscape with curated content that separates signal from noise.

    In-Depth Tech Stories

    Explore tech impact in In-Depth Stories. Narrative data journalism offers comprehensive analyses, revealing stories behind data. Understand industry trends for a deeper perspective on tech's intricate relationships with society.

    Expert Reviews

    Empower decisions with Expert Reviews, merging industry expertise and insightful analysis. Delve into tech intricacies, get the best deals, and stay ahead with our trustworthy guide to navigating the ever-changing tech market.