2024년 백악관은 미국 통신사 9 곳이 Salt Typhoon 그룹의 공격을 당했다고 공개합니다.
처음에는 8개의 통신사가 공격 당했다고 밝혔습니다.
https://cyberscoop.com/salt-typhoon-telecom-cybersecurity-gaps-white-house-response/
White House: Salt Typhoon hacks possible because telecoms lacked basic security measures
The White House said Friday the Salt Typhoon breach occurred in large part due to failures at telecom companies to protect their systems.
cyberscoop.com
이후 9번째 통신사 해킹을 공개합니다.
. A 9th Telecoms Firm Has Been Hit by a Massive Chinese Espionage Campaign, the White House Says (SecurityWeek, 2024.12.29)
https://www.securityweek.com/a-9th-telecoms-firm-has-been-hit-by-a-massive-chinese-espionage-campaign-the-white-house-says/
2024년 12월 말 미국은 중국 해커가 미국 재무부 시스템을 공격했다고 공개했습니다.
. Chinese Hackers Accessed US Treasury Workstations in ‘Major’ Cybersecurity Incident (SecurityWeek, 2024.12.31)
* 배후 주장
미국 정부는 사천 기반 사이버 보안 회사 Sichuan Juxinhe Network Technology Co., LTD 가 배후에 있다고 밝혔습니다.
. Treasury Sanctions Company Associated with Salt Typhoon and Hacker Associated with Treasury Compromise (2025.01.17)
https://home.treasury.gov/news/press-releases/jy2792
Treasury Sanctions Company Associated with Salt Typhoon and Hacker Associated with Treasury Compromise
WASHINGTON — Today, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) is sanctioning Yin Kecheng, a Shanghai-based cyber actor who was involved with the recent Department of the Treasury network compromise. Additionally, OFAC is
home.treasury.gov
. Salt Typhoon: the Other Shoe Has Dropped, but Consternation Continues
https://nattothoughts.substack.com/p/salt-typhoon-the-other-shoe-dropped
Salt Typhoon: the Other Shoe Has Dropped, but Consternation Continues
Sichuan Juxinhe, directly involved in the Salt Typhoon cyber operations, resembles a front company of the Chinese Ministry of State Security
nattothoughts.substack.com
* 현황
트럼프 정부는 Salt Typhoon을 조사한 사이버 안전 검토위원회 (Cyber Safety Review Board)를 해산했다고 합니다.
. Trump disbands Cyber Safety Review Board, Salt Typhoon inquiry in limbo (2025.01.22)
Trump disbands Cyber Safety Review Board, Salt Typhoon inquiry in limbo
Some experts are concerned that the dismissal of the Cyber Safety Review Board removes a critical security blanket and cancels a report that could have been valuable to cybersecurity leaders.
www.csoonline.com
솔트 타이푼의 활동은 현재도 진행 중입니다.
. More victims of China's Salt Typhoon crew emerge: Telcos just now hit via Cisco bugs (The Register, 2025.02.13)
https://www.theregister.com/2025/02/13/salt_typhoon_pwned_7_more/
More victims of China's Salt Typhoon cyber-spy crew emerge
Networks in US and beyond compromised by Beijing's super-snoops pulling off priv-esc attacks
www.theregister.com
'보안위협 (악성코드)' 카테고리의 다른 글
| Adobe Acrobat Sign 스캠(피싱) ... 처음 보는 유형인데 ? (0) | 2025.03.03 |
|---|---|
| 페이팔 스캠 (사기) ... 통화 유도 사기 ? (0) | 2024.12.23 |
| 북한 지원 추정 Kimsuky 그룹의 피싱 메일 발송기 ... 이걸로 피싱 메일 보냈구나 (0) | 2024.04.23 |
| XZ Utils (CVE-2024-3094) 백도어 확인 방법과 시사점 (0) | 2024.04.12 |
| 중국산 미니PC를 샀더니 악성코드가 함께 ?! - 제조사 실수 인 듯 (0) | 2024.04.09 |