Sophos Firewall Fiasco: US Names Chinese Hackers Behind Massive 2020 Breach

The US Treasury and Justice Departments have named a Chinese company and employee as culprits behind the 2020 exploit of a zero-day flaw in Sophos firewalls. Guan Tianfeng, a security researcher at Sichuan Silence, allegedly led the attack, compromising 81,000 firewalls, including one used by a US government agency.

3P
Published: December 11, 2024 5:07 amAdded: December 10, 2024 at 9:47 pmAssembled by: The Editor
Pro Dashboard

Hot Take:

**_When it comes to cybersecurity, Guan Tianfeng and his ‘Silent’ pals from Sichuan prove that some people just love playing with fire(walls). But hey, at least their company has an epic name!_**

Key Points:

– The US named a Chinese company, Sichuan Silence, and employee Guan Tianfeng in the 2020 Sophos firewall breach.
– A zero-day vulnerability, CVE-2020-12271, was exploited, compromising 81,000 firewalls, including a US government agency’s.
– Guan is accused of delivering malware via a fake domain and attempted ransomware modifications.
– The US Treasury sanctioned Guan and Sichuan Silence, blocking US businesses from associating with them.
– A $10 million reward is offered for info leading to Guan’s capture or identification of others engaged in malicious cyber activities.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?