Detecting Cloud Threat Actors via Alert Patterns

~Paloalto~
Threat actors like Muddled Libra and Silk Typhoon create distinct cloud alert 'fingerprints' based on their TTPs, enabling pattern-based detection.
-
IOCs: (None identified)
-
#CloudSecurity #MuddledLibra #SilkTyphoon #ThreatIntel

Capacità covert cinesi: Silk Typhoon evoluto da Hafnium per spionaggio globale con exploit e tool offensivi.

#cina #evidenza #exploit #Hafnium #proxylogon #SilkTyphoon #zeroday
www.matricedigitale.it/2025/07/31/e...

Chinese firms linked to Silk Typhoon have filed over 15 patents for cyber espionage tools, revealing the depth of state-sponsored cyber activities. #CyberSecurity #SilkTyphoon #CyberEspionage Link: thedailytechfeed.com/chinese-firm...

China’s Covert Capabilities | Silk Spun From Hafnium China-linked hackers used patented spyware tech from front companies tied to Hafnium, exposing gaps in cyber threat attribution.

🌀🔥… the complex relationship btw CN APTs🕵️‍♂️ and CN PSOAs 🇨🇳 makes attribution even more challenging than defenders might have supposed. #cti #threatintel #hafnium #silktyphoon @dakotaindc.bsky.social

www.sentinelone.com/labs/chinas-...

Original post on mastodon.social

Computing's weekly roundup of tech news in Asia. This time we look at the attempted extradition by the US of an alleged Chinese hacker of vaccine secrets who was arrested in Italy last week, and fast-fashion ecommerce company Shein’s plans to go public […]

Alleged Chinese State Hacker Wanted by US Arrested in Italy Xu Zewei has been arrested on charges that he is a member of the Chinese state-sponsored hacking group Hafnium (Silk Typhoon).

www.securityweek.com/alleged-chin...

Alleged Chinese State Hacker Wanted by US Arrested in Italy

#SecurityWeek #Chinese #Hacker
#Arrested #Italy #XuZewei
#Hafnium #SilkTyphoon
#state-sponsored #MSS
#Computer #Internet
#Network

Chinese national Xu Zewei arrested in Italy for alleged cyber attacks on U.S. institutions, targeting COVID-19 research. #CyberSecurity #CyberEspionage #Hafnium #SilkTyphoon #DOJ #MSS #COVID19Research Link: thedailytechfeed.com/chinese-hack...

US Announces Arresting Chinese Hacker Linked to HAFNIUM Group Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

United States announces arrest of a state-sponsored Chinese hacker in Italy linked to #HAFNIUM (Silk Typhoon) known for high-profile attacks on US infrastructure.

Read: hackread.com/us-arresting...

#CyberSecurity #CyberCrime #China #SilkTyphoon #Italy

Italy arrests alleged Silk Typhoon COVID vaccine cyberspy : Zewei Xu's family reportedly bemused at arrest as extradition tabled

Suspected Chinese cybersnoop grounded in Italy after US tipoff
www.theregister.com/2025/07/08/s...

Alleged #SilkTyphoon member arrested in Milan last week.
#CyberEspionage #CyberCrime #Hacking #CyberSecurity

Alleged Chinese hacker tied to Silk Typhoon arrested for cyberespionage academics studying infectious diseases read more about Alleged Chinese hacker tied to Silk Typhoon arrested for cyberespionage

Alleged Chinese hacker tied to Silk Typhoon arrested for cyberespionage reconbee.com/alleged-chin...

#chinesehackers #chinese #silktyphoon #cyberespionage #cyberattack

Arrestato a Milano presunto hacker Silk Typhoon accusato di cyber-spionaggio, in Brasile furto da 140 milioni facilitato da credenziali vendute da un insider.

#brasile #cyberspionaggio #evidenza #SilkTyphoon #SocialEngineering
www.matricedigitale.it/2025/07/08/a...

Silk Typhoon targeting IT supply chain | Microsoft Security Blog Silk Typhoon is a Chinese state actor focused on espionage campaigns targeting a wide range of industries in the US and throughout the world. In recent months, Silk Typhoon has shifted to performing I...

Silk Typhoon is attacking the IT supply chain.

#silktyphoon #cybersecurity

Original post on universeodon.com

3/ lol so i guess whoever hacked america's core bank regulator (#OCC) was in the OCC's computer systems reading people's emails for most of a year

"People familiar with the investigation told Bloomberg that the attackers had access to more email accts than previously thought and to around 100 […]

Silk Typhoon Hackers Indicted - Schneier on Security Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese individuals accused of more than a decade of hacker intrusions around the…

シルクタイフーンハッカーが起訴される

Silk Typhoon Hackers Indicted #SchneieronSecurity (Mar 11)

■ChatGPTまとめ
米国司法省は、中国のハッカー集団「Silk Typhoon（APT27）」の12人を起訴。彼らは10年以上にわたり、世界中の政府機関や企業を標的にサイバー攻撃を行い、最近では米国財務省への侵入が確認されている。​

#SilkTyphoon #APT27 #サイバー攻撃 #中国ハッカー #米国財務省

Silk Typhoon shifted to specifically targeting IT management companies The Chinese state-backed espionage group started targeting third-party IT services in late 2024, Microsoft researchers said.

The #Chinese state-backed threat group #SilkTyphoon shifted tactics in late 2024 to broaden access and enable follow-on attacks against downstream customers of its initial targets, Microsoft Threat Intelligence said in a blog released Wednesday. cyberscoop.com/silk-typhoon...

Silk Typhoon targeting the IT supply chain Welcome to the latest edition of Chainmail: Software Supply Chain Security News, which brings you the latest software security headlines from around the world, curated by the team at ReversingLabs. Th...

🗞️ In this week's Chainmail newsletter: #SilkTyphoon is exploiting unpatched apps to abuse stolen API keys & credentials to pull off supply chain attacks. Also: 7 Go packages have been found deploying #malware on Linux & macOS systems.

Read it here: www.linkedin.com/pulse/silk-t...

MSN

#Microsoft warnt davor, dass chinesische #Hacker #Cloud Daten ausspionieren

Doppelt dumm gelaufen:

1.
Speichert man nichts in #Clouds (= klaut), weil das dann andere haben!

2.
Braucht #China immer jemanden, den sie kopieren können - mangels eigener Ideen!

#SilkTyphoon
www.msn.com/en-us/money/...

GreyNoise Detects Active Exploitation of Silk Typhoon-Linked CVEs Silk Typhoon-linked CVEs are under active exploitation. GreyNoise observed 90+ threat IPs exploiting them in the past 24 hours, following Microsoft’s report on the group's evolving tactics.

🚨 GreyNoise has detected active exploitation of Silk Typhoon-linked CVEs in the past 24 hours. 90 threat IPs actively targeting. Full analysis: www.greynoise.io/blog/active-... #GreyNoise #Cybersecurity #SilkTyphoon

GreyNoise Detects Active Exploitation of Silk Typhoon-Linked CVEs Silk Typhoon-linked CVEs are under active exploitation. GreyNoise observed 90+ threat IPs exploiting them in the past 24 hours, following Microsoft’s report on the group's evolving tactics.

🚨 GreyNoise has detected active exploitation of Silk Typhoon-linked CVEs in the past 24 hours. 90 threat IPs actively targeting. Full analysis: www.greynoise.io/blog/active-exploitation... #GreyNoise #Cybersecurity #SilkTyphoon

12 Chinese hackers charged with US Treasury breach — and much, much more China’s government “paid hansomely for stolen data.”

www.theverge.com/new... #cybersecurity #USTreasury #breach #China #APT27 #SilkTyphoon