#volttyphoon — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #volttyphoon, aggregated by home.social.
-
According to Dragos, Volt Typhoon continues active operations inside U.S. utilities, shifting toward direct OT interaction and sensor data theft in 2025.
Notable elements:
• Pre-positioning in ICS environments
• Exploitation of Ivanti & Trimble Cityworks vulnerabilities
• GIS data harvesting for infrastructure mapping
• Access broker activity attributed to SYLVANITE
• Long-term persistence objectives
CEO Rob Lee stated some compromised sites may never be identified.Technical question:
If adversaries maintain low-and-slow OT access, how should defenders adapt detection engineering?
– Network baselining?
– Sensor telemetry validation?
– Asset-level anomaly detection?
– Zero trust for OT?Drop your technical analysis below.
Follow @technadu for advanced threat coverage.#ICSsecurity #OTsecurity #ThreatHunting #DetectionEngineering #VoltTyphoon #InfrastructureDefense #CyberResilience #EnergyGrid #WaterUtilities #NationalSecurity #BlueTeam #CyberThreatIntel
-
According to Dragos, Volt Typhoon continues active operations inside U.S. utilities, shifting toward direct OT interaction and sensor data theft in 2025.
Notable elements:
• Pre-positioning in ICS environments
• Exploitation of Ivanti & Trimble Cityworks vulnerabilities
• GIS data harvesting for infrastructure mapping
• Access broker activity attributed to SYLVANITE
• Long-term persistence objectives
CEO Rob Lee stated some compromised sites may never be identified.Technical question:
If adversaries maintain low-and-slow OT access, how should defenders adapt detection engineering?
– Network baselining?
– Sensor telemetry validation?
– Asset-level anomaly detection?
– Zero trust for OT?Drop your technical analysis below.
Follow @technadu for advanced threat coverage.#ICSsecurity #OTsecurity #ThreatHunting #DetectionEngineering #VoltTyphoon #InfrastructureDefense #CyberResilience #EnergyGrid #WaterUtilities #NationalSecurity #BlueTeam #CyberThreatIntel
-
According to Dragos, Volt Typhoon continues active operations inside U.S. utilities, shifting toward direct OT interaction and sensor data theft in 2025.
Notable elements:
• Pre-positioning in ICS environments
• Exploitation of Ivanti & Trimble Cityworks vulnerabilities
• GIS data harvesting for infrastructure mapping
• Access broker activity attributed to SYLVANITE
• Long-term persistence objectives
CEO Rob Lee stated some compromised sites may never be identified.Technical question:
If adversaries maintain low-and-slow OT access, how should defenders adapt detection engineering?
– Network baselining?
– Sensor telemetry validation?
– Asset-level anomaly detection?
– Zero trust for OT?Drop your technical analysis below.
Follow @technadu for advanced threat coverage.#ICSsecurity #OTsecurity #ThreatHunting #DetectionEngineering #VoltTyphoon #InfrastructureDefense #CyberResilience #EnergyGrid #WaterUtilities #NationalSecurity #BlueTeam #CyberThreatIntel
-
According to Dragos, Volt Typhoon continues active operations inside U.S. utilities, shifting toward direct OT interaction and sensor data theft in 2025.
Notable elements:
• Pre-positioning in ICS environments
• Exploitation of Ivanti & Trimble Cityworks vulnerabilities
• GIS data harvesting for infrastructure mapping
• Access broker activity attributed to SYLVANITE
• Long-term persistence objectives
CEO Rob Lee stated some compromised sites may never be identified.Technical question:
If adversaries maintain low-and-slow OT access, how should defenders adapt detection engineering?
– Network baselining?
– Sensor telemetry validation?
– Asset-level anomaly detection?
– Zero trust for OT?Drop your technical analysis below.
Follow @technadu for advanced threat coverage.#ICSsecurity #OTsecurity #ThreatHunting #DetectionEngineering #VoltTyphoon #InfrastructureDefense #CyberResilience #EnergyGrid #WaterUtilities #NationalSecurity #BlueTeam #CyberThreatIntel
-
PROMPTSPY, CEPEZED GEHACKT EN 90% RANSOMWARE VIA FIREWALLS
ESET onthulde PromptSpy, de eerste malware voor Android die Google Gemini AI misbruikt. Op ClawHub werden 1.184 kwaadaardige skills ontdekt. cepezed op leksite DragonForce. Barracuda: 90% ransomware begint bij firewalls.
➤ https://www.ccinfo.nl/journaal/3018896_promptspy-cepezed-gehackt-en-90-ransomware-via-firewalls
#Cyberjournaal #ccinfo #PromptSpy #cepezed #DragonForce #Barracuda #ransomware #VoltTyphoon #cybersecurity #Nederland #Belgie
-
PROMPTSPY, CEPEZED GEHACKT EN 90% RANSOMWARE VIA FIREWALLS
ESET onthulde PromptSpy, de eerste malware voor Android die Google Gemini AI misbruikt. Op ClawHub werden 1.184 kwaadaardige skills ontdekt. cepezed op leksite DragonForce. Barracuda: 90% ransomware begint bij firewalls.
➤ https://www.ccinfo.nl/journaal/3018896_promptspy-cepezed-gehackt-en-90-ransomware-via-firewalls
#Cyberjournaal #ccinfo #PromptSpy #cepezed #DragonForce #Barracuda #ransomware #VoltTyphoon #cybersecurity #Nederland #Belgie
-
PROMPTSPY, CEPEZED GEHACKT EN 90% RANSOMWARE VIA FIREWALLS
ESET onthulde PromptSpy, de eerste malware voor Android die Google Gemini AI misbruikt. Op ClawHub werden 1.184 kwaadaardige skills ontdekt. cepezed op leksite DragonForce. Barracuda: 90% ransomware begint bij firewalls.
➤ https://www.ccinfo.nl/journaal/3018896_promptspy-cepezed-gehackt-en-90-ransomware-via-firewalls
#Cyberjournaal #ccinfo #PromptSpy #cepezed #DragonForce #Barracuda #ransomware #VoltTyphoon #cybersecurity #Nederland #Belgie
-
PROMPTSPY, CEPEZED GEHACKT EN 90% RANSOMWARE VIA FIREWALLS
ESET onthulde PromptSpy, de eerste malware voor Android die Google Gemini AI misbruikt. Op ClawHub werden 1.184 kwaadaardige skills ontdekt. cepezed op leksite DragonForce. Barracuda: 90% ransomware begint bij firewalls.
➤ https://www.ccinfo.nl/journaal/3018896_promptspy-cepezed-gehackt-en-90-ransomware-via-firewalls
#Cyberjournaal #ccinfo #PromptSpy #cepezed #DragonForce #Barracuda #ransomware #VoltTyphoon #cybersecurity #Nederland #Belgie
-
#China remains embedded in #US energy networks 'for the purpose of taking it down'
Three new threat groups began targeting #criticalinfrastructure last year, while a well-known Beijing-backed crew - #VoltTyphoon - continued to compromise cellular gateways and routers, and then break into US #electric, #oil, and #gas companies in 2025, according to Dragos' annual threat report published on Tuesday.
https://www.theregister.com/2026/02/17/volt_typhoon_dragos/ -
Beyond the Battlefield: Threats to the Defense Industrial Base
#UNC3886 #UNC5221 #APT44 #TEMP.Vermin #UNC5125 #UNC5792 #UNC4221 #UNC5976 #UNC5114 #APT45 #APT43 #UNC2970 #UNC1549 #UNC6446 #APT5 #HeavenOfTheSlavs #APT1 #APT40 #VoltTyphoon #UNC6508 #UNC5203 #UNC5318
https://cloud.google.com/blog/topics/threat-intelligence/threats-to-defense-industrial-base -
Beyond the Battlefield: Threats to the Defense Industrial Base
#UNC3886 #UNC5221 #APT44 #TEMP.Vermin #UNC5125 #UNC5792 #UNC4221 #UNC5976 #UNC5114 #APT45 #APT43 #UNC2970 #UNC1549 #UNC6446 #APT5 #HeavenOfTheSlavs #APT1 #APT40 #VoltTyphoon #UNC6508 #UNC5203 #UNC5318
https://cloud.google.com/blog/topics/threat-intelligence/threats-to-defense-industrial-base -
Beyond the Battlefield: Threats to the Defense Industrial Base
#UNC3886 #UNC5221 #APT44 #TEMP.Vermin #UNC5125 #UNC5792 #UNC4221 #UNC5976 #UNC5114 #APT45 #APT43 #UNC2970 #UNC1549 #UNC6446 #APT5 #HeavenOfTheSlavs #APT1 #APT40 #VoltTyphoon #UNC6508 #UNC5203 #UNC5318
https://cloud.google.com/blog/topics/threat-intelligence/threats-to-defense-industrial-base -
Beyond the Battlefield: Threats to the Defense Industrial Base
#UNC3886 #UNC5221 #APT44 #TEMP.Vermin #UNC5125 #UNC5792 #UNC4221 #UNC5976 #UNC5114 #APT45 #APT43 #UNC2970 #UNC1549 #UNC6446 #APT5 #HeavenOfTheSlavs #APT1 #APT40 #VoltTyphoon #UNC6508 #UNC5203 #UNC5318
https://cloud.google.com/blog/topics/threat-intelligence/threats-to-defense-industrial-base -
Beyond the Battlefield: Threats to the Defense Industrial Base
#UNC3886 #UNC5221 #APT44 #TEMP.Vermin #UNC5125 #UNC5792 #UNC4221 #UNC5976 #UNC5114 #APT45 #APT43 #UNC2970 #UNC1549 #UNC6446 #APT5 #HeavenOfTheSlavs #APT1 #APT40 #VoltTyphoon #UNC6508 #UNC5203 #UNC5318
https://cloud.google.com/blog/topics/threat-intelligence/threats-to-defense-industrial-base -
Australien 🇦🇺 : Geheimdienstchef warnt vor chinesischen Hackern | heise online https://www.heise.de/news/Australien-Geheimdienstchef-warnt-vor-chinesischen-Hackern-11075137.html #Hacking #CyberCrime #KRITIS #SaltTyphoon #VoltTyphoon #China 🇨🇳
-
NSA says Volt Typhoon was ‘not successful’ at persisting in critical infrastructure https://www.techradar.com/pro/security/nsa-says-volt-typhoon-was-not-successful-at-persisting-in-critical-infrastructure
#cybersecurity #China #VoltTyphoon #CriticalInfrastructure #US #threatactors -
NSA: Volt Typhoon was ‘not successful’ at persisting in critical infrastructure
#VoltTyphoon
https://therecord.media/china-typhoon-hackers-nsa-fbi-response -
#VoltTyphoon? Prepositioning? Überall Pandas? WTF sind eigtl. Chinas Cyberoperationen, Cybersicherheitsstrategie und Architektur. Warum uns das was angehen sollte, erfahrt ihr in der aktuellen Podcast-Folge: #cybersicherheit #china https://percepticon.de/2025/48-wtf-sind-chinesische-cyber-operationen-und-chinas-cyberstrategie/
-
Homeland Secretary Noem Vows to Put CISA ‘Back to Focusing on its Core Mission’ – Source: securityboulevard.com https://ciso2ciso.com/homeland-secretary-noem-vows-to-put-cisa-back-to-focusing-on-its-core-mission-source-securityboulevard-com/ #SecurityBoulevard(Original) #rssfeedpostgeneratorecho #CyberSecurityNews #SecurityAwareness #SecurityBoulevard #SocialFacebook #SocialLinkedIn #Cybersecurity #SaltTyphoon #VoltTyphoon #Spotlight #2025RSAC #FEATURED #SocialX #China #CISA #News #RSAC #DHS
-
#China now #America's number one cyber threat – US must get up to speed
This shift was signified by the #VoltTyphoon attacks against the US last year, retired Rear Admiral Mark Montgomery told the #RSA Conference in San Francisco on Monday, and corporates to be held accountable. #US has focused on defense as its key strategy. But in doing so, this had allowed other nations to hone their cyber skills, and China has risen to be the key adversary in this vital battleground.
https://www.theregister.com/2025/04/29/china_us_cyber_threat/ -
With Chinese diplomats reportedly admitting to targeting US Critical Infrastructure as a "warning to the U.S. about Taiwan" and some in the industry war-gaming the possibility of Cyber Effects being used to sway the Trade dispute between the US and China, now seemed a good time to do a reality check on how - if at all - China would do so.
The bottom line - expect a surge in cyber espionage and signaling campaigns targeting US telcos and leadership to provide the CCP a competitive advantage in negotiations and their backdoor dealings.🕵️
Cyber Security doesn't operate in a vacuum - here's a good example of where geopolitics starts to seep in at the edges: https://opalsec.io/is-cyber-a-legitimate-weapon-in-a-tariff-war/
#CyberSecurity #InfoSec #ThreatIntel #China #USChinaTradeWar #Geopolitics #CyberWarfare #CriticalInfrastructure #VoltTyphoon #SaltTyphoon #NationalSecurity #CyberThreats #RiskManagement #GeopoliticalRisk #CyberPolicy #CISA
-
Brass Typhoon: The #Chinese #Hacking Group Lurking in the Shadows
Though less well-known than groups like #VoltTyphoon and #SaltTyphoon , #BrassTyphoon , or #APT41 , is an infamous, longtime #espionage actor that foreshadowed recent telecom #hacks.
#security #China -
China admitted its role in Volt Typhoon cyberattacks on U.S. infrastructure – Source: securityaffairs.com https://ciso2ciso.com/china-admitted-its-role-in-volt-typhoon-cyberattacks-on-u-s-infrastructure-source-securityaffairs-com/ #rssfeedpostgeneratorecho #informationsecuritynews #ITInformationSecurity #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #SecurityAffairs #SecurityAffairs #BreakingNews #Cyberwarfare #Intelligence #SecurityNews #hackingnews #VoltTyphoon #Security #hacking
-
#VoltTyphoon: #China 🇨🇳 gesteht Cyberangriffe auf die #USA 🇺🇸 angeblich indirekt ein | Security https://www.heise.de/news/Volt-Typhoon-China-gesteht-Cyberangriffe-auf-die-USA-angeblich-indirekt-ein-10348326.html #CyberWar #Hacking
-
🇺🇸 US | 🇨🇳 CHINA
🔴 China Implies Role in US Infrastructure Hacks🔸 In Dec 2024 Geneva talks, China hinted at link to Volt Typhoon cyberattacks.
🔸 Sought to justify hacks as response to US support for Taiwan.
🔸 US officials saw this as Beijing’s implicit admission.
🔸 FBI dismantled Volt Typhoon in Jan 2024.#China #CyberAttack #VoltTyphoon #Taiwan #US #Infrastructure #WSJ #Hacking #CyberSecurity
-
China Admitted to Volt Typhoon Cyberattacks on US Critical Infrastructure: Report – Source: www.securityweek.com https://ciso2ciso.com/china-admitted-to-volt-typhoon-cyberattacks-on-us-critical-infrastructure-report-source-www-securityweek-com/ #rssfeedpostgeneratorecho #criticalinfrastructure #CyberSecurityNews #securityweekcom #securityweek #NationState #VoltTyphoon #Government #FEATURED #China #US
-
"Chinese officials acknowledged in a secret December meeting that Beijing was behind a widespread series of alarming cyberattacks on U.S. infrastructure, according to people familiar with the matter, underscoring how hostilities between the two superpowers are continuing to escalate.
The Chinese delegation linked years of intrusions into computer networks at U.S. ports, water utilities, airports and other targets, to increasing U.S. policy support for Taiwan, the people, who declined to be named, said.
The first-of-its-kind signal at a Geneva summit with the outgoing Biden administration startled American officials used to hearing their Chinese counterparts blame the campaign, which security researchers have dubbed Volt Typhoon, on a criminal outfit, or accuse the U.S. of having an overactive imagination."
#USA #CyberSecurity #China #StateHacking #VoltTyphoon #Infrastructure
-
China Admitted to US That It Conducted Volt Typhoon Attacks: Report https://www.securityweek.com/china-admitted-to-us-that-it-conducted-volt-typhoon-attacks-report/ #criticalinfrastructure #Nation-State #VoltTyphoon #Government #Featured #China #US
-
China Admitted to US That It Conducted Volt Typhoon Attacks: Report https://www.securityweek.com/china-admitted-to-us-that-it-conducted-volt-typhoon-attacks-report/ #criticalinfrastructure #Nation-State #VoltTyphoon #Government #Featured #China #US
-
Smashing Security podcast #409: Peeping perverts and FBI phone calls – Source: grahamcluley.com https://ciso2ciso.com/smashing-security-podcast-409-peeping-perverts-and-fbi-phone-calls-source-grahamcluley-com/ #rssfeedpostgeneratorecho #criticalinfrastructure #CyberSecurityNews #SmashingSecurity #Securitythreats #grahamcluleycom #Grahamcluley #surveillance #VoltTyphoon #Lawℴ #Malware #Podcast #privacy #CCTV
-
Smashing Security podcast #409: Peeping perverts and FBI phone calls https://grahamcluley.com/smashing-security-podcast-409/ #criticalinfrastructure #SmashingSecurity #Securitythreats #surveillance #VoltTyphoon #Lawℴ #Malware #Podcast #Privacy #CCTV
-
Happy Monday everyone!
Coming out of a brief lull in activity, I have a #readoftheday for you! This comes from a CYFIRMA article that takes a look at the APT #VoltTyphoon. They share vulnerabilities that have been recently exploited and (my favorite part) recent #TTPs and #behaviors that are associated with the group! I like how well it is documented that I am not even going to recreate it here! I will definitely diving back into their archives to see if there are more of these profile articles! Enjoy and Happy Hunting!
APT PROFILE – VOLT TYPHOON
https://www.cyfirma.com/research/apt-profile-volt-typhoon-2/Intel 471 Cyborg Security, Now Part of Intel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting
-
Chinese #Hackers Sat Undetected in Small #Massachusetts #PowerUtility for Months | PCMag
State-sponsored #VoltTyphoon hackers were poking around the #LittletonElectric Light and Water Departments for at least 300 days before the #FBI gave the utility a heads up.
#security #Chinahttps://www.pcmag.com/news/chinese-hackers-sat-undetected-in-small-massachusetts-power-utility-for
-
Chinese Volt Typhoon Hackers Infiltrated US Electric Utility for Nearly a Year https://hackread.com/chinese-volt-typhoon-hackers-infiltrated-us-electric-grid/ #Cybersecurity #CyberAttacks #CyberAttack #VoltTyphoon #Security #China #FBI #USA
-
Volt Typhoon hackers were in Massachusetts utility’s systems for 10 months
#VoltTyphoon
https://therecord.media/volt-typhoon-hackers-utility-months -
Chinese Volt Typhoon Hackers Infiltrated US Electric Utility for Nearly a Year – Source:hackread.com https://ciso2ciso.com/chinese-volt-typhoon-hackers-infiltrated-us-electric-utility-for-nearly-a-year-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #cybersecurity #CyberAttacks #CyberAttack #VoltTyphoon #Hackread #security #China #FBI #USA
-
New: Chinese Hackers Breached US Electric Grid for over 300 Days! #VoltTyphoon infiltrated a Massachusetts utility collecting critical data undetected for almost a year.
Read: https://hackread.com/chinese-volt-typhoon-hackers-infiltrated-us-electric-grid/
-
New: Chinese Hackers Breached US Electric Grid for over 300 Days! #VoltTyphoon infiltrated a Massachusetts utility collecting critical data undetected for almost a year.
Read: https://hackread.com/chinese-volt-typhoon-hackers-infiltrated-us-electric-grid/
-
New: Chinese Hackers Breached US Electric Grid for over 300 Days! #VoltTyphoon infiltrated a Massachusetts utility collecting critical data undetected for almost a year.
Read: https://hackread.com/chinese-volt-typhoon-hackers-infiltrated-us-electric-grid/
-
New: Chinese Hackers Breached US Electric Grid for over 300 Days! #VoltTyphoon infiltrated a Massachusetts utility collecting critical data undetected for almost a year.
Read: https://hackread.com/chinese-volt-typhoon-hackers-infiltrated-us-electric-grid/
-
New: Chinese Hackers Breached US Electric Grid for over 300 Days! #VoltTyphoon infiltrated a Massachusetts utility collecting critical data undetected for almost a year.
Read: https://hackread.com/chinese-volt-typhoon-hackers-infiltrated-us-electric-grid/
-
China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days https://www.securityweek.com/chinas-volt-typhoon-hackers-dwelled-in-us-electric-grid-for-300-days/ #VoltTyphoon #Featured #ICS/OT #energy #China #ICS #OT
-
China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days https://www.securityweek.com/chinas-volt-typhoon-hackers-dwelled-in-us-electric-grid-for-300-days/ #VoltTyphoon #Featured #ICS/OT #energy #China #ICS #OT
-
Americans urged to use encrypted messaging after large, ongoing cyberattack https://www.malwarebytes.com/blog/news/2024/12/americans-urged-to-use-encrypted-messaging-after-large-ongoing-cyberattack #encryptedmessaging #SaltTyphoon #Volttyphoon #USTelecom #Privacy #News #E2EE
-
U.S. Environmental Protection Agency (EPA) press release: EPA Administrator Michael Regan and National Security Advisor Jake Sullivan warned state governors about cyber threats targeting water sector infrastructure. They'll hold a meeting on Thursday 21 March 2024 between 1230-1400 U.S. Eastern to discuss cybersecurity gaps in efforts. They will also be forming a Water Sector Cybersecurity Task Force to identify near-term actions and strategies to reduce the risk of water systems nationwide to cyberattacks. 🔗 https://www.epa.gov/newsreleases/biden-harris-administration-engages-states-safeguarding-water-sector-infrastructure
#EPA #pressrelease #news #cybersecurity #Iran #China #VoltTyphoon #IRGC #criticalinfrastructure #wws
-
Singapore Telecommunications was breached by Chinese state-sponsored hackers this summer as part of a broader campaign against telecommunications companies and other critical infrastructure operators around the world. https://www.japantimes.co.jp/news/2024/11/06/asia-pacific/crime-legal/chinese-hacking-singtel-telecom/ #asiapacific #crimelegal #china #hacking #telecoms #singapore #singtel #volttyphoon
-
CISA, NSA, FBI, and other U.S. and international partners are issuing a joint fact sheet, People’s Republic of China State-Sponsored Cyber Activity: Actions for Critical Infrastructure Leaders. 🔗 (PDF) https://www.cisa.gov/sites/default/files/2024-03/Fact-Sheet-PRC-State-Sponsored-Cyber-Activity-Actions-for-Critical-Infrastructure-Leaders-508c.pdf
Actions for leaders include:- Make Informed and Proactive Resourcing Decisions
- Secure Your Supply Chain
- Drive a Cybersecurity Culture
-
»Chinese #VoltTyphoon #hackers exploited Versa zero-day to breach #ISPs, #MSPs.« https://www.bleepingcomputer.com/news/security/chinese-volt-typhoon-hackers-exploited-versa-zero-day-to-breach-isps-msps/?eicker.news #tech #media
-
#Versa Networks criticized for swerving the blame.
A huge, gaping vulnerability in #VersaDirector allowed a #Chinese state sponsored #APT group to pivot into countless enterprises. Dubbed #VoltTyphoon, the group’s aim is to be ready for cyberwar between the PRC and America. So, yeah, this is a major problem.
But Versa Networks, Inc. made the classic PR faux pas of blaming its own customers—major U.S. ISPs and MSPs. In #SBBlogwatch, we break out the popcorn. At @TechstrongGroup’s @SecurityBlvd: https://securityboulevard.com/2024/08/china-cyberwar-coming-versas-vice-volt-typhoons-target/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc $LUMN