Storm-2077 Strikes: China’s Cyber Mischief Meets America’s Data Headache
In a cyber comedy of errors, Storm-2077, a China state threat actor, has targeted US government agencies and industries globally. Microsoft’s report reveals their tactics, including phishing emails and cloud environment intrusions. Meanwhile, Google’s TAG has blocked pro-China influence operation GLASSBRIDGE, which uses fake news sites to amplify narratives aligned with China’s views.
Hot Take:
China’s new cyber threat actor, Storm-2077, appears to be going full ‘Mission Impossible’ on U.S. government agencies and NGOs. Not only are they hacking their way into sensitive data like it’s a buffet, but they’re also using phishing tactics that would make even the most seasoned angler blush. Meanwhile, China’s GLASSBRIDGE operation is proving that fake news isn’t just for Facebook anymore; it’s a global extravaganza with the subtlety of a fireworks display in a library. The cyber world is officially the Wild West, and we’re just trying to keep our hats on!
Key Points:
- Storm-2077, a new China state threat actor, is targeting U.S. government agencies and NGOs.
- The group has been active since January 2024, attacking sectors like aviation and telecommunications.
- They use phishing emails and credential harvesting to gain access to sensitive data.
- GLASSBRIDGE, a pro-China influence operation, uses inauthentic news sites to spread propaganda.
- Google has blocked over a thousand GLASSBRIDGE-operated websites since 2022.