Chinese hacking group ‘Volt Typhoon’ spying on US critical infrastructure, says Microsoft
July 15, 2026
  • Read Ecopy
  • Circulation
  • Advertise
  • Careers
  • About Us
  • Contact Us
Android AppiPhone AppArattai
Organiser
  • ‌
  • Bharat
    • Assam
    • Bihar
    • Chhattisgarh
    • Jharkhand
    • Maharashtra
    • View All States
  • World
    • Asia
    • Europe
    • North America
    • South America
    • Africa
    • Australia
  • Editorial
  • International
  • Opinion
  • RSS @ 100
  • More
    • Op Sindoor
    • Analysis
    • Sports
    • Defence
    • Politics
    • Business
    • Economy
    • Culture
    • Special Report
    • Sci & Tech
    • Entertainment
    • G20
    • Azadi Ka Amrit Mahotsav
    • Vocal4Local
    • Web Stories
    • Education
    • Employment
    • Books
    • Interviews
    • Travel
    • Law
    • Health
    • Obituary
  • Subscribe
    • Subscribe Print Edition
    • Subscribe Ecopy
    • Read Ecopy
  • ‌
  • Bharat
    • Assam
    • Bihar
    • Chhattisgarh
    • Jharkhand
    • Maharashtra
    • View All States
  • World
    • Asia
    • Europe
    • North America
    • South America
    • Africa
    • Australia
  • Editorial
  • International
  • Opinion
  • RSS @ 100
  • More
    • Op Sindoor
    • Analysis
    • Sports
    • Defence
    • Politics
    • Business
    • Economy
    • Culture
    • Special Report
    • Sci & Tech
    • Entertainment
    • G20
    • Azadi Ka Amrit Mahotsav
    • Vocal4Local
    • Web Stories
    • Education
    • Employment
    • Books
    • Interviews
    • Travel
    • Law
    • Health
    • Obituary
  • Subscribe
    • Subscribe Print Edition
    • Subscribe Ecopy
    • Read Ecopy
Organiser
  • Home
  • Bharat
  • World
  • Operation Sindoor
  • Editorial
  • Analysis
  • Opinion
  • Culture
  • Defence
  • International Edition
  • RSS @ 100
  • Magazine
  • Read Ecopy
Home International Edition America USA

Chinese hacking group ‘Volt Typhoon’ spying on US critical infrastructure, says Microsoft

The US National Security Agency (NSA) released a Cybersecurity Advisory (CSA) titled "People's Republic of China State-Sponsored Cyber Actor Living off the Land to Evade Detection".

WEBDESKWEBDESK
May 25, 2023, 06:00 pm IST
in USA, World, China, Technology
Follow on Google News
(Photo Courtesy: Microsoft & News18)

(Photo Courtesy: Microsoft & News18)

FacebookTwitterWhatsAppTelegramEmail

On May 24, Microsoft released a blog report on its website that they have “…uncovered stealthy and targeted malicious activity focused on post-compromise credential access and network system discovery aimed at critical infrastructure organisations in the United States”. They alleged that a Chinese state-sponsored group, “Volt Typhoon”, was behind this attack, and it focused on “espionage” and “information gathering”.

According to Microsoft, the hacking group Volt Typhoon is developing “…capabilities that could disrupt critical communications infrastructure between the United States and Asia region during future crises”.

Microsoft claimed that this group infects their target’s existing computers to uncover information and retrieve data instead of utilising conventional hacking approaches, which often entail duping a victim into downloading malicious files.

The tech-giant has been tracking this hacking group for quite some time. This group has been active since mid-2021 and “…targeted critical infrastructure organisations in Guam and elsewhere in the United States”. These affected organisations belonged to various different sectors such as communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education. Though it is unclear how many organisations were impacted.

Microsoft said in its report that “mitigating this attack could be challenging”. The US National Security Agency (NSA) released a Cybersecurity Advisory (CSA) titled “People’s Republic of China State-Sponsored Cyber Actor Living off the Land to Evade Detection” on May 24. The agency stated that they’re trying to identify breaches by working with their partners, including Canada, New Zealand, Australia, and the United Kingdom.

The agencies of these partner countries involved in “hunting” and “detecting” this attack are as follows:

• US Cybersecurity and Infrastructure Security Agency (CISA)
• US Federal Bureau of Investigation (FBI)
• Australian Cyber Security Centre (ACSC)
• Canadian Centre for Cyber Security (CCCS)
• New Zealand National Cyber Security Centre (NCSC-NZ)
• United Kingdom National Cyber Security Centre (NCSC-UK)

Despite the fact that Chinese hackers are known to spy on Western nations, this is one of the largest documented cyber espionage missions targeting American critical infrastructure, as per the reports. CISA Director Jen Easterly said, “For years, China has conducted operations worldwide to steal intellectual property and sensitive data from critical infrastructure organisations around the globe”.

In a statement NSA Cybersecurity Director Rob Joyce said, “A PRC (People’s Republic of China) state-sponsored actor is living off the land, using built-in network tools to evade our defenses and leaving no trace behind”.

The FBI’s Cyber Division Assistant Director Bryan Vorndran stated it would continue “…to warn against China engaging in malicious activity with the intent to target critical infrastructure organisations and use identified techniques to mask their detection”. He added, “We, along with our federal and international partners, will not allow the PRC (People’s Republic of China) to continue to use these unacceptable tactics”.
The NCSC Director of Operations, Paul Chichester, urged UK essential service providers to take action against attackers and follow their guidance “… to help detect this malicious activity and prevent persistent compromise”.

The Head of the Canadian Centre for Cyber Security, Sami Khoury, highlights the importance of working together against this threat, “The interconnected nature of our infrastructures and economies highlights the importance of working together with our allies to identify and share real-time threat information”.

The CSA also mentioned that “their (Volt Typhoon) primary tactics, techniques, and procedures (TTP) of living off the land, the PRC actor uses tools already installed or built into a target’s system. This allows the actor to evade detection by blending in with normal Windows systems and network activities, avoiding endpoint detection and response (EDR) products, and limiting the amount of activity that is captured in default logging configurations”.

The NSA advises network defenders to use the CSA’s detection and hunting guidance, “…such as logging and monitoring of command line execution and WMI events, as well as ensuring log integrity by using a hardened centralised logging server, preferably on a segmented network”.

Topics: ACSCNSACanadian Centre for Cyber SecurityUnited StatesCCCSVolt TyphoonUSCybersecurity AdvisoryUKBryan VorndranAustraliaNational Cyber Security CentreRob JoyceChinaCSAJen EasterlyFederal Bureau of InvestigationCybersecurity and Infrastructure Security AgencyFBICISACanadaAustralian Cyber Security CentreNew Zealand
Share1TweetSendShareSend
✮ Subscribe Organiser YouTube Channel. ✮
✮ Join Organiser's WhatsApp channel for Nationalist views beyond the news. ✮
Previous News

New Parliament building: BSP supremo Mayawati backs Union Govt; calls Opposition’s boycott ‘unfair’

Next News

Principles of Science came from Vedas, but repackaged as western knowledge, says ISRO Head S Somnath

Related News

Great Nicobar is emerging as a strategic gateway that strengthens India's maritime reach while increasing pressure on China's Malacca Dilemma

Great Nicobar Project to boost India’s Indo-Pacific leverage, deepen China’s Malacca Dilemma: Report

As India expands its global partnerships, China grapples with growing political, military and economic challenges

Coup Fears in China? Why President Xi staying home while PM Modi expands India’s global diplomatic footprint?

PM Modi's Gifts to Albanese Blend India's Ancient Craft, Modern Music and Premium Coffee

From Dhokra Sculpture to Colonial Cousins Vinyl: PM Modi’s gifts to Australian PM Albanese showcases cultural heritage

Prime Minister Narendra Modi and New Zealand Prime Minister Christopher Luxon

India-New Zealand Strategic Partnership: A new horizon for New Delhi’s economic diplomacy

The Fragile Truce: Why the US-Iran peace deal mediated by puppet Pakistan is primed for collapse

Different shades of diplomacy and foreign policy

Load More

Latest News

FIR filed against NSUI leader for rape

Bhopal Shocker: NSUI leaders booked for rape of ST girl during ‘Chhatra Goonj Ki Awaaz’ campaign; FIR registered

AI Generated Image

Ladakh Gets Major Governance Boost: All 7 districts to have autonomous hill councils

Karnataka: Mangaluru police bust illegal immigration network; 11 Bangladesh nationals & three agents arrested

Ahead of Rath Yatra, Gujarat ATS Busts Suspected JeM Network, 12 Detained

Gujarat ATS Crackdown: 12 suspected Jaish-e-Mohammed operatives held ahead of Jagannath Rath Yatra

Umar Faizy Mukkam

Samastha Kerala Jamiyyathul Ulama opposes PM SHRI in Keralam, demands Arabic and foreign languages university

“Reuters-You can do better”: US Envoy Sergio Gor slams British news agency over fake narrative on India-US trade deal

Tamil Nadu: Karur stampede appointments by CM Joseph open Pandora’s box as other victims’ kin seek similar benefits

A Protest Held by Hindu Munnani a protest held at Thiruvattar in Kanyakumari district

Tamil Nadu: Hindu Munnani protests in Kanyakumari, seeks removal of illegal Christian prayer hall despite court orders

The Rajasthan Legislative Assembly marks 75 glorious years of upholding democratic values and legislative excellence

Rajasthan Legislative Assembly at 75: Honouring a legacy of landmark laws, democratic values and visionary leadership

External Affairs Minister Dr. S. Jaishankar launched India's campaign for the UNSC chair

India unveils campaign for UNSC seat; EAM Jaishankar outlines SHANTI vision for secure, peaceful & just world order

Load More
  • Privacy
  • Terms
  • Cookie Policy
  • Refund and Cancellation
  • Delivery and Shipping

© Bharat Prakashan (Delhi) Limited.
Tech-enabled by Ananthapuri Technologies

  • Home
  • Search Organiser
  • Bharat
    • Assam
    • Bihar
    • Chhattisgarh
    • Jharkhand
    • Maharashtra
    • View All States
  • World
    • Asia
    • Africa
    • North America
    • South America
    • Europe
    • Australia
  • Editorial
  • Operation Sindoor
  • Opinion
  • Analysis
  • Defence
  • Culture
  • Sports
  • Business
  • RSS @ 100
  • Entertainment
  • More ..
    • Sci & Tech
    • Vocal4Local
    • Special Report
    • Education
    • Employment
    • Books
    • Interviews
    • Travel
    • Health
    • Politics
    • Law
    • Economy
    • Obituary
  • Subscribe Magazine
  • Read Ecopy
  • Advertise
  • Circulation
  • Careers
  • About Us
  • Contact Us
  • Policies & Terms
    • Privacy Policy
    • Cookie Policy
    • Refund and Cancellation
    • Terms of Use

© Bharat Prakashan (Delhi) Limited.
Tech-enabled by Ananthapuri Technologies