News

FBI Counteracts Chinese State-Sponsored Botnet Targeting U.S. Critical Infrastructure

In a significant stride towards bolstering national cybersecurity, the FBI has successfully neutralized a major botnet operation orchestrated by a Chinese government-sponsored hacking group. The hackers, identified as “Volt Typhoon” or “Bronze Silhouette,” have been actively targeting American critical infrastructure since mid-2021.

The covert operation, authorized by a court order last month, effectively dismantled a network of hundreds of U.S.-based small office/home office (SOHO) routers. These routers, compromised by the “KV Botnet” malware, were instrumental in concealing the origins of the hacking activities orchestrated from China. The FBI press release did not disclose specific infrastructure targets but underscored the critical nature of the threats posed by these operations.

A botnet, typically a collection of internet-connected devices infected by malware, operates under the radar of device owners, executing coordinated tasks as a collective. In this case, the hackers exploited cybersecurity vulnerabilities, particularly in outdated Cisco and NetGear routers that were no longer receiving manufacturer security updates, to establish their malicious network.

The FBI’s counter-hack involved eradicating the malware from the compromised routers and severing their communication with the control devices, effectively paralyzing the botnet’s operation. Both the FBI and the Chinese embassy in Washington, D.C., have been approached for comments by Newsweek.

U.S. Attorney General Merrick Garland reaffirmed the nation’s commitment to dismantling detrimental cyber operations, including those sponsored by foreign governments, to safeguard American security. FBI Director Christopher Wray, speaking at a House of Representatives’ Select Committee hearing, emphasized the pressing need to recognize and counter the Chinese cyber threats targeting critical U.S. infrastructure such as water treatment facilities, electrical grids, and transportation systems.

Wray highlighted the persistent risk posed by these hacking activities, framing them as groundwork for potential future conflicts where China could leverage these cyber incursions to gain strategic advantages. He also pointed out the ongoing economic threats posed by the daily theft of American innovation and sensitive data.

This revelation comes in the wake of warnings from the intelligence chiefs of the Five Eyes alliance about China’s escalating cyber espionage and intellectual property theft, leveraging advanced technology. The FBI has been urged to bolster its cyber defense capabilities, especially in light of China’s ambitions to emerge as a “cyber superpower” and the overwhelming scale of its hacking program compared to U.S. cyber defense personnel.

Select Committee Chairman Mike Gallagher underscored the urgency of defending critical American infrastructure in cyberspace, likening China’s cyber targeting to placing explosives on physical infrastructure. This decisive action by the FBI marks a crucial step in safeguarding the nation’s digital landscape against foreign cyber threats.

Leave a Reply

Your email address will not be published. Required fields are marked *