FBI Director Chris Wray warns Congress: Chinese hackers attack US critical infrastructure

- There has been far too little public focus on PRC hackers targeting our critical infrastructure (...) The risk that poses to every American requires our attention now - said the FBI director for CBS News.

In May last year, Microsoft's security team exposed a cyberattack operation known as 'Volt Typhoon.' They found it had been active since mid-2021 and possessed the potential to interfere with crucial communications infrastructure connecting the United States and Asia in times of crisis

Cybersecurity professionals have identified that Volt Typhoon operates through botnets - networks of compromised internet-connected devices that can be harnessed to attack vulnerable points. These attacks often begin by exploiting weak security in routers or modems.

The actions of this Chinese cyber group have raised concerns among U.S. authorities, especially because of its operations near Andersen Air Force Base in Guam. In recent times, China has intensified its military activities around the island, seeing it as a reaction to what it deems "collusion" between Taiwan and the U.S.

A Guam seaport would be critically strategic for launching any U.S. military action should Taiwan face an invasion. Microsoft highlighted that Chinese military and intelligence cyber units consistently focus on espionage and collecting information.

On Tuesday, Reuters disclosed that the Department of Justice and the FBI acted against the Volt Typhoon hackers, obtaining legal authority to remotely intervene and neutralize some aspects of their operations. This approach of remotely neutralizing cyber threats represents a novel tactic in the U.S. government's cybersecurity strategy.

Source: CBS News