NSA Releases Advisory on Chinese State-sponsored Actors Exploiting Publicly Known Vulnerabilities

The National Security Agency (NSA) has released a cybersecurity advisory on Chinese state-sponsored malicious cyber activity. This advisory provides 25 Common Vulnerabilities and Exposures (CVEs) known to be recently leveraged, or scanned-for, by Chinese state-sponsored cyber actors to enable successful hacking operations against a multitude of victim networks. Read the NSA advisory.

Based on the advisory, the U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) encourages system administrators to prioritize the immediate patching of the CVEs. It also encourages them to review CISA’s Potential for China Cyber Response to Heightened U.S.–China Tensions alert, which details potential cyber response to heightened tensions between the United States and China and provides specific tactics, techniques, and procedures (TTPs) and recommended mitigations to the cybersecurity community to assist in the protection of the nation’s critical infrastructure. And it reminds them of CISA’s Chinese Malicious Cyber Activity webpage, which contains more information on these threat actors’ efforts. Read the CISA advisory.