China-Linked Cyber Espionage: Salt Typhoon Targets Global Telecoms with Cisco Exploit
The Canadian Centre for Cyber Security and the FBI have issued a warning about cyber attacks by China-linked Salt Typhoon actors targeting global telecommunications. Using a critical Cisco software vulnerability, attackers accessed a Canadian telecom company’s network devices. They modified files to set up a tunnel for traffic collection, posing a broader espionage threat.
Hot Take:
Turns out, your phone carrier might not just be dropping your calls—they might be dropping your data right into the lap of Salt Typhoon! In this high-stakes episode of “Who Wants to Breach a Telecom Network?”, hackers channel their inner weatherman with a storm of espionage. Meanwhile, Fortinet devices play host to a malware fashion show featuring SHOE RACK and UMBRELLA STAND. Talk about a runway of cyber chaos!
Key Points:
- Cyber espionage targeting global telecom providers by China-linked Salt Typhoon actors.
- Exploitation of Cisco IOS XE software vulnerability (CVE-2023-20198) with a perfect CVSS score of 10.0.
- Installation of GRE tunnels for data collection and long-term network access.
- NCSC warns of SHOE RACK and UMBRELLA STAND malware targeting FortiGate 100D firewalls.
- Both advisories highlight the persistent threat of Chinese state-sponsored cyber activities.