05. China-Based Group Infiltrates Critical US Infrastructure Undetected
A China-based group called Volt Typhoon has infiltrated critical infrastructure organizations in the US and Guam undetected, according to Microsoft and the “Five Eyes” nations. The group focuses on espionage and information gathering, hiding its activities within infected machines, and using compromised network equipment.
Its main targets are communication, manufacturing, utility, transportation, and government sectors. Microsoft warns of potential disruptions to US-Asia communications infrastructure during crises. The group uses stealthy techniques, relying on legitimate tools and stolen credentials to avoid detection. Chinese hackers have also targeted Kenya’s government to gather information on debt owed to Beijing.