Chinese hacking group used a software bug to weaken some secure data from the United States and foreign internet companies. Lumen Technologies’s researchers
found that hackers exploited a new flaw in Versa Director. Versa Director is a software platform that manages services for customers from Santa Clara. They said five victims had been found, one from India and four from the U.S.
The Volt Typhoon was unaware of this cybersecurity attack before it could patch. The group was taking advantage of this in Versa Director, a piece of software made by Versa Networks. Versa sells software to manage network configurations. Versa is for internet providers and managed service providers. Their use makes Versa an attractive data protection target for hackers.
Volt Typhoon, a group that works for the Chinese government, targeted data protection infrastructure. This target includes communication and telecom networks. They seek to cause `real-world harm` in a future conflict with the U.S. The cybersecurity attack aims to disrupt any U.S. military response in a war over Taiwan.
Doug Britton, an executive from RunSafe Security, said the Lumen access would give a group like Volt Typhoon `the ability to do broad, silent surveillance.`The Chinese Embassy didn’t respond to this secure data attack. However, Beijing denies any involvement in the secure data attack. The U.S. Cybersecurity and Infrastructure Security Agency added the Versa vulnerability to their list of `known exploited vulnerabilities.`
Black Lotus Lab researchers say the hackers tried to steal and use credentials on customers of weakened firms. The Chinese hackers attacked the secure data from Versa. They saw it as a way to access other networks linked to the unprotected Versa servers.
Mike Horka, a security researcher, made a declaration about the data protection attack from the hackers. `This wasn’t limited to just telecoms, but managed service providers and internet service providers.` Horka said `these central locations that they can go after, which then provide additional access.`
Subscribe to our newsletter
Versa confirmed the cybersecurity attack. Dan Maier, the Versa Chief Marketing Officer said: `Versa confirmed the vulnerability and issued an emergency patch at that time. We have since issued a comprehensive patch and distributed this to all customers.`
.webp)
.webp)
