Close Menu
TechBrunchTechBrunch
  • Home
  • AI
  • Apps
  • Crypto
  • Security
  • Startups
  • TechCrunch
  • Venture

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

What's Hot

Alltrails debuts a $80 annual membership, including smart routes with AI

May 12, 2025

Apple brings emergency satellite functionality to iPhone 13 with iOS 18.5

May 12, 2025

Even the A16Z VC says no one really knows what an AI agent is

May 12, 2025
Facebook X (Twitter) Instagram
TechBrunchTechBrunch
  • Home
  • AI

    OpenAI seeks to extend human lifespans with the help of longevity startups

    January 17, 2025

    Farewell to the $200 million woolly mammoth and TikTok

    January 17, 2025

    Nord Security founder launches Nexos.ai to help enterprises move AI projects from pilot to production

    January 17, 2025

    Data proves it remains difficult for startups to raise capital, even though VCs invested $75 billion in the fourth quarter

    January 16, 2025

    Apple suspends AI notification summaries for news after generating false alerts

    January 16, 2025
  • Apps

    Alltrails debuts a $80 annual membership, including smart routes with AI

    May 12, 2025

    Apple brings emergency satellite functionality to iPhone 13 with iOS 18.5

    May 12, 2025

    A flock of Whitney Wolf burns out – and bounces back

    May 10, 2025

    Google I/O 2025: What to expect including Gemini and Android 16 updates?

    May 9, 2025

    Epic Games and Spotify Test Apple's new app store rules

    May 9, 2025
  • Crypto

    Stripe unveils AI Foundation model for payments, revealing a “deeper partnership” with Nvidia

    May 7, 2025

    Movie Pass explores the daily fantasy platform of film buffs

    May 1, 2025

    Speaking on TechCrunch 2025: Application is open

    April 24, 2025

    Revolut, a $45 billion Neobank, recorded a profit of $1 billion in 2024

    April 24, 2025

    The new kids show will come with a crypto wallet when it debuts this fall

    April 18, 2025
  • Security

    Five Things We Learned from WhatsApp vs. NSO Group Spyware Litigation

    May 10, 2025

    FBI and Dutch police seize and shut down hacked router botnets

    May 9, 2025

    Florida bill calling for encryption backdoors for social media accounts failed

    May 9, 2025

    Korean telephone giant SKT data breaches timeline

    May 8, 2025

    Powerschool paid the hacker ransom, but now the school says it's being forced

    May 8, 2025
  • Startups

    7 days left: Founders and VCs save over $300 on all stage passes

    March 24, 2025

    AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

    March 24, 2025

    20 Hottest Open Source Startups of 2024

    March 22, 2025

    Andrill may build a weapons factory in the UK

    March 21, 2025

    Startup Weekly: Wiz bets paid off at M&A Rich Week

    March 21, 2025
  • TechCrunch

    OpenSea takes a long-term view with a focus on UX despite NFT sales remaining low

    February 8, 2024

    AI will save software companies' growth dreams

    February 8, 2024

    B2B and B2C are not about who buys, but how you sell

    February 5, 2024

    It's time for venture capital to break away from fast fashion

    February 3, 2024

    a16z's Chris Dixon believes it's time to focus on blockchain use cases rather than speculation

    February 2, 2024
  • Venture

    Even the A16Z VC says no one really knows what an AI agent is

    May 12, 2025

    Mercury CEO formalizes bets on early stage founders with a $26 million fund

    May 12, 2025

    Google has launched a new initiative to help startups build AI

    May 12, 2025

    Saudi Arabian Prince launches AI ventures when Trump, Musk, Altman and Zuckerberg arrive at the meeting

    May 12, 2025

    This American VC is betting on European defence technology. That's still very rare

    May 12, 2025
TechBrunchTechBrunch

Chinese government hackers targeted US internet providers with zero-day attack, researchers say

TechBrunchBy TechBrunchAugust 27, 20243 Mins Read
Facebook Twitter Pinterest Telegram LinkedIn Tumblr WhatsApp Email
Share
Facebook Twitter LinkedIn Pinterest Telegram Email


Security researchers have discovered that a group of hackers linked to the Chinese government have been targeting U.S. internet service providers using a previously unknown software vulnerability.

Researchers at Black Lotus Labs, a division of cybersecurity firm Lumen, said the group known as Bolt Typhoon exploited a zero-day vulnerability (meaning the vulnerability went unnoticed until the software maker patched it) in Versa Director software developed by Versa Networks.

Versa sells software that manages network configurations and is used by internet service providers (ISPs) and managed service providers (MSPs), making it a “highly valued and attractive target” for hackers, the researchers wrote in a report published Tuesday.

This is the latest discovery of hacking activity by Bolt Typhoon, a group believed to be operating on behalf of the Chinese government, which has focused on targeting critical infrastructure, including communications and telecommunications networks, with the goal of “inflicting real-world harm” in the event of a future conflict with the United States. U.S. government officials testified earlier this year that the hackers aimed to disrupt the U.S. military response to a potential future invasion of Taiwan.

According to researchers at Black Lotus Labs, the hackers' goal was to steal and use the credentials of downstream customers of the breached companies. In other words, the hackers were targeting the Versa servers as a crossing point from which they could infiltrate other networks connected to the vulnerable Versa servers, Mike Horka, a security researcher who investigated the incident, told TechCrunch in a phone interview.

Contact Us Do you have more information about Volt Typhoon or other government-sponsored hacking activities? You can securely contact Lorenzo Franceschi-Bicchierai from a non-work device on Signal (+1 917 257 1382), Telegram, Keybase @lorenzofb, or email. You can also contact TechCrunch via SecureDrop.

“This isn't just about telecommunications companies, but also managed service providers and internet service providers,” Holka said. “The targets are these epicenters that then provide further access.” Holka said these internet and network companies are themselves targets, “more likely because they may be able to provide access to downstream customers.”

Holka said he found four victims in the U.S. across two ISPs, one MSP and one IT provider, and one outside the U.S. at an ISP in India. Black Lotus Labs did not disclose the names of the victims.

Dan Maier, chief marketing officer for Versa, said in an email to TechCrunch that the company has fixed the zero-day vulnerability identified by Black Lotus Labs.

“Versa confirmed the vulnerability at the time and issued an emergency patch, and then issued a comprehensive patch that was distributed to all customers,” Maier said, adding that researchers had warned the company about the flaw in late June.

Meyer told TechCrunch that Versa itself had confirmed the flaw and had observed “APT actors” exploiting it.

Black Lotus Labs said it had alerted the US cybersecurity agency CISA about the zero-day vulnerability and the hacking activity. On Friday, CISA added the zero-day vulnerability to its list of vulnerabilities known to have been exploited in the wild. The agency warned that “this type of vulnerability is a frequent target for malicious cyber actors and poses significant risks to federal agencies.”



Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Five Things We Learned from WhatsApp vs. NSO Group Spyware Litigation

May 10, 2025

FBI and Dutch police seize and shut down hacked router botnets

May 9, 2025

Florida bill calling for encryption backdoors for social media accounts failed

May 9, 2025

Korean telephone giant SKT data breaches timeline

May 8, 2025

Powerschool paid the hacker ransom, but now the school says it's being forced

May 8, 2025

VC Company Insight Partners Review Personal Data Stolen During a January Hack

May 8, 2025

Leave A Reply Cancel Reply

Top Reviews
Editors Picks

7 days left: Founders and VCs save over $300 on all stage passes

March 24, 2025

AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

March 24, 2025

20 Hottest Open Source Startups of 2024

March 22, 2025

Andrill may build a weapons factory in the UK

March 21, 2025
About Us
About Us

Welcome to Tech Brunch, your go-to destination for cutting-edge insights, news, and analysis in the fields of Artificial Intelligence (AI), Cryptocurrency, Technology, and Startups. At Tech Brunch, we are passionate about exploring the latest trends, innovations, and developments shaping the future of these dynamic industries.

Our Picks

Alltrails debuts a $80 annual membership, including smart routes with AI

May 12, 2025

Apple brings emergency satellite functionality to iPhone 13 with iOS 18.5

May 12, 2025

Even the A16Z VC says no one really knows what an AI agent is

May 12, 2025

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

© 2025 TechBrunch. Designed by TechBrunch.
  • Home
  • About Tech Brunch
  • Advertise with Tech Brunch
  • Contact us
  • DMCA Notice
  • Privacy Policy
  • Terms of Use

Type above and press Enter to search. Press Esc to cancel.