The Cybersecurity and Infrastructure Security Agency reports that sophisticated cyber actors – including those affiliated with China’s Ministry of State Security – are using known vulnerabilities and open-source exploits to infiltrate U.S. federal government entities. The advisory describes how these and other cyber actors are able to gain initial access, collect and store credentials, select targets and gather information, and build capabilities by establishing command and control within a compromised system. The hackers are reportedly using public resources such as the national database of vulnerabilities maintained by the National Institute of Standards and Technology to sharpen their tools.
Cybersecurity, Privacy, & AI
Trending Now
FBI Takes Down Massive China-Based Cybercrime Network That Caused $1.9B in Losses • Agentic AI Is Coming to Government Faster Than Its Guardrails • Trump Releases National Security Systems Cybersecurity Policy • Industry and Academia Call on Administration to Free Anthropic’s AI Model • A Cyber Force With No Enlisted? Not So Fast, Some Experts Say
Hackers Connected to China Have Compromised U.S. Government Systems, CISA says
Angel House Studio | Shutterstock
Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.