Security News > 2024 > February > Botnet Attack Targeted Routers: A Wake-Up Call for Securing Remote Employees’ Hardware
State-sponsored hackers affiliated with China have targeted small office/home office routers in the U.S. in a wide-ranging botnet attack, Federal Bureau of Investigation Director Christopher Wray announced on Wednesday, Jan. 31.
The investigators also cut the routers off from other devices used in the botnet.
The cybersecurity threat in this case is a botnet created by Volt Typhoon, a group of attackers sponsored by the Chinese government.
On Jan. 31, 2024, the FBI revealed that an investigation into the same group of threat actors in December 2023 showed attackers sponsored by the government of China had created a botnet using hundreds of privately-owned routers across the U.S. The attack was an attempt to create inroads into "Communications, energy, transportation, and water sectors" in order to disrupt critical U.S. functions in the event of conflict between the countries, said Wray in the press release.
How to reduce cybersecurity risks from botnets for remote workers.
In order to harden devices against being used in botnet attacks, run regular security scans, institute multifactor authentication and keep employees informed about cybersecurity best practices.
News URL
https://www.techrepublic.com/article/volt-typhoon-botnet-attack/
Related news
- Critical Flaws in Tank Gauge Systems Expose Gas Stations to Remote Attacks (source)
- New Cryptojacking Attack Targets Docker API to Create Malicious Swarm Botnet (source)
- 700K+ DrayTek routers are sitting ducks on the internet, open to remote hijacking (source)
- New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries (source)
- Microsoft Warns of Chinese Botnet Exploiting Router Flaws for Credential Theft (source)
- OvrC Platform Vulnerabilities Expose IoT Devices to Remote Attacks and Code Execution (source)