CISA (Cybersecurity and Infrastructure Security Agency) has reported that from the past one year, chinese cyber criminals are scanning US government network devices. The security agency has released an alert informing about the cyber group which is meant to be connected with China's Ministry of State Security (MSS).
The cyber group has targeted the popular network devices in the US and entered into the networks with recently disclosed vulnerabilities. The popular networks include Citrix and Plus Secure VPN appliances, Microsoft Exchange email servers and F5 Big-IP load balancers.
The CISA has further apprised all the private and government agencies using the above mentioned servers to be careful, and advised to tighten their cyber security. Not only entering through the networks but also they are using the email phishing trap. Moreover, the chinese hackers are planning some additional malicious activities, as per the report. The aim is to enter into the targeted networks and steal the information.
Interestingly, these chinese cyber criminals aren't the only ones to attack the US networks, Iranian state actors have also targeted the mentioned networking devices (Microsoft Exchange email servers, Citrix and Plus Secure VPN appliances etc.) as stated by the Cyber Security alert by the FBI.
According to a report by Crowdstrike, it is mentioned that the expert Iranian cyber criminals transfer the access of the network device to the fellow group for intelligence data gathering. Also, the irrelevant data gathered from these devices was sold on underground hacking platforms.
Be aware of these cyber criminals!