US Local Governments Targeted by Chinese Hackers

Report: Chinese hackers used Cityworks vulnerability to deliver malware

The bad actors have exploited the vulnerability since January, delivering malware to local governments and utilities groups.

US local governments targeted by Chinese hackers

The Chinese used the Cityworks bug to deploy Cobalt Strike beacons and backdoors.

National Guardsmen receive brief from Volt Typhoon utility victim at cyber exercise

For the first time at a New England-based cyber exercise, National Guardsmen recently received a threat briefing from a company that was compromised by a high-profile Chinese cyber actor. Cyber Yankee, now in its 11th year, is a one-of-a-kind exercise that acts as a dry run of sorts in which members of the Guard in the six New England states work side-by-side with the private sector, utilities and other entities to protect critical infrastructur…

Chinese hackers breach US local governments using Cityworks zero-day

Chinese-speaking hackers have exploited a now-patched Trimble Cityworks zero-day to breach multiple local governing bodies across the United States.

The Dangers and Threats of Zero-Day Attacks

Zero-day threats are among the biggest risks in cybersecurity. They occur when a vulnerability—in this case meaning a security flaw or weak point in software or hardware that is unknown to the vendor or developers—is exploited to gain access. They are named as such because the vendor or developer has zero days to fix...

Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks

A Chinese threat actor exploited a zero-day vulnerability in Trimble Cityworks to hack local government entities in the US. The post Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks appeared first on SecurityWeek. This article has been… Read more → The post Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks appeared first on IT Security News.