The US Treasury Division’s Workplace of Overseas Property Management (OFAC) has sanctioned Sichuan Silence Data Know-how Firm and its worker Guan Tianfeng for his or her involvement within the April 2020 world firewall compromise, which focused quite a few US important infrastructure corporations.
The Division of Justice has additionally indicted Guan for a similar cybercrime, and the State Division has provided a $10 million reward for info on the people concerned, highlighting the US authorities’s dedication to combating Chinese language cyber threats and holding malicious actors accountable.
Zero-day Vulnerability Exploited
Guan Tianfeng exploited a zero-day vulnerability in a firewall product to compromise roughly 81,000 firewalls worldwide, together with 36 important infrastructure techniques within the US, which aimed to steal delicate information and deploy the Ragnarok ransomware.
It might have doubtlessly disabled safety measures and encrypted important techniques, resulting in extreme penalties, similar to oil rig malfunctions and potential lack of life, whereas well timed detection and mitigation of the assault prevented important harm.
Leveraging 2024 MITRE ATT&CK Outcomes for SME & MSP Cybersecurity Leaders – Attend Free Webinar
Guan, a Chinese language cybersecurity researcher affiliated with Sichuan Silence, a Chinese language authorities contractor, exploited a zero-day vulnerability to compromise a US firewall in April 2020 by leveraging instruments and methods supplied by Sichuan Silence, enabling entry to delicate US networks.
Sichuan Silence, recognized for its involvement in cyber espionage and offensive cyber operations, has been sanctioned by the US Workplace of Overseas Property Management (OFAC) for these malicious actions, which pose a big menace to US nationwide safety.
OFAC has imposed sanctions on designated individuals, blocking their U.S. property and prohibiting transactions with them, as entities 50% or extra owned by blocked individuals are additionally topic to those restrictions.
Transactions involving sanctioned people or entities aren’t permitted to be pursued by people or entities primarily based in america.
Monetary establishments and different individuals concerned in such transactions might face sanctions or enforcement actions, as OFAC’s sanctions intention to induce behavioral change and could also be lifted underneath particular situations.
Examine Actual-World Malicious Hyperlinks, Malware & Phishing Assaults With ANY.RUN – Attempt for Free