Authorities intelligence and cybersecurity businesses from 13 international locations have launched a joint advisory detailing the strategies utilized by Salt Hurricane, a Chinese language state-sponsored APT group that has focused telecommunications, authorities, transportation, lodging and army infrastructure networks from around the globe. The businesses have linked Salt Hurricane’s actions to a number of Chinese language entities, together with three expertise firms that present cyber-related services to the Individuals’s Liberation Military (PLA) and China’s Ministry of State Safety (MSS).
“The info stolen by way of this exercise in opposition to overseas telecommunications and web service suppliers (ISPs), in addition to intrusions within the lodging and transportation sectors, in the end can present Chinese language intelligence providers with the aptitude to determine and observe their targets’ communications and actions around the globe,” the businesses acknowledged of their report.
Additionally identified within the cybersecurity trade as Operator Panda, RedMike, UNC5807 and GhostEmperor, Salt Hurricane made headlines in late 2024 and earlier this yr when authorities revealed that the group had breached main US telecommunications suppliers and ISP together with AT&T, Verizon, T-Cellular, Lumen Applied sciences, Constitution, Consolidated and Windstream Communications with a purpose to spy on delicate communications.
