IT'S name is redolent of an exotic electrical storm. But is the freshly christened hacking group "Volt Typhoon" an imminent danger to American infrastructure, or just a new crop of digital spies playing an old game?
Here is what is known about the group and its potential threat:
'FUTURE CRISES'
Nearly every country in the world uses hackers to gather intelligence. Major powers like the United States and Russia have large stables of such groups - many of which have been given colourful nicknames by cybersecurity experts, like "Equation Group" or "Fancy Bear."
Where experts worry is when such groups turn their attention from intelligence gathering to digital sabotage.
So when Microsoft Corp said in a blog post on Wednesday that Volt Typhoon was "pursuing development of capabilities that could disrupt critical communications infrastructure between the United States and Asia region during future crises," it immediately brought to mind escalating tensions between China and the United States over Taiwan.
Any conflict between those two countries would almost certainly involve cyberattacks across the Pacific.
'ESPIONAGE PURPOSES'
Does this mean a group of destructive hackers is preparing to sabotage U.S. infrastructure in the event of a conflict over Taiwan?
Microsoft qualified its assessment as "moderate confidence," intelligence jargon that typically means a theory is plausible and credibly sourced but has yet to be fully corroborated. Different researchers have identified various aspects of the group. Not everyone has seen evidence of sabotage preparation.
Volt Typhoon so far appears to be focused on stealing information from "organisations that hold data that relates to the military or government in the United States," said Marc Burnard of Secureworks - an arm of Dell Technologies. Although Burnard said Volt Typhoon - which Secureworks calls "Bronze Silhouette" - may well be positioning itself for disruption, he said what he had seen of the hackers suggested it was being used "primarily for espionage purposes."
'ALARM BELLS'
U.S. tech firm Cisco Systems Inc said it has seen disturbing evidence that Volt Typhoon was readying itself for something dangerous.
Like Microsoft and Secureworks, Cisco's experts refused to say exactly where they had encountered the group. Cisco's director of threat intelligence, Matt Olney, said the company was called in to deal directly with one case at a critical infrastructure facility, where sabotage preparation seemed to be the best explanation.
The hackers were hunting for documentation showing how the facility worked, Olney said, and they did not appear to be after money. He would not provide details but said "it's the kind of critical infrastructure that would definitely be targeted in a conflict."
"We definitely had alarm bells going off," he said.
STEALTHY STORM
Nearly all cyber spies work to cover their tracks. Microsoft and other researchers said Volt Typhoon was a particularly quiet operator that hid its traffic by routing it through hacked network equipment - like home routers - and carefully expunged evidence of intrusions from victim's logs.
China routinely denies hacking and has done so again in the case of Volt Typhoon. But documentation of Beijing's cyberespionage campaigns have been building for more than two decades. The spying has come into sharp focus over the past 10 years as Western researchers tied breaches to specific units within the People's Liberation Army, and U.S. law enforcement charged a string of Chinese officers with stealing American secrets.
Secureworks said in a blog post that Volt Typhoon's interest in operational security likely stemmed from embarrassment over the drumbeat of U.S. indictments and "increased pressure from (Chinese) leadership to avoid public scrutiny of its cyberespionage activity."
Reuters
Sat May 27 2023
Where experts worry is when such groups turn their attention from intelligence gathering to digital sabotage. - REUTERS
BNM'S international reserves rise to USD118 bil as at Nov 15, 2024
Malaysia's international reserves rose to US$118.0 billion as at Nov 15, 2024, up from US$117.6 billion on Oct 30, 2024.
Findings by dark energy researchers back Einstein's conception of gravity
The findings announced are part of a years-long study of the history of the cosmos focusing upon dark energy.
NRES responds to Rimbawatch press release on COP29
The Ministry of Natural Resources and Environmental Sustainability (NRES) wishes to offer the following clarifications to the issues raised.
Online Safety Bill and Anti-Cyberbullying Laws must carefully balance rights and protections
The Online Safety Advocacy Group (OSAG) stands united with people in Malaysia in the fight against serious online harms.
Malaysia's inflation at 1.9 pct in Oct 2024 - DOSM
Malaysia's inflation rate for October 2024 has increased to 1.9 per cent, up from 1.8 per cent in September this year.
Saudi Arabia showcases Vision 2030 goals at Airshow China 2024
For the first time, Saudi Arabia is participating in the China International Aviation & Aerospace Exhibition held recently in Zhuhai.
King Charles' coronation cost GBP 71mil, govt accounts show
The coronation of Britain's King Charles cost taxpayers GBP72 million (US$90 million), official accounts have revealed.
Couple and associate charged with trafficking 51.9 kg of meth
A married couple and a man were charged in the Magistrate's Court here today with trafficking 51.974 kilogrammes of Methamphetamine.
PDRM to consult AGC in completing Teoh Beng Hock investigation
The police may seek new testimony from existing witnesses for additional insights into the investigation of Teoh Beng Hock's death.
Thai court rejects petition over ex-PM Thaksin's political influence
Thailand's Constitutional Court rejects a petition seeking to stop Thaksin Shinawatra from interfering in the running the Pheu Thai party.
Abidin takes oath of office as Sungai Bakap assemblyman
The State Assemblyman for Sungai Bakap, Abidin Ismail, was sworn in today at the State Assembly building, Lebuh Light.
UPNM cadet officer charged with injuring junior, stomping on him with spike boots
A cadet officer at UPNM pleaded not guilty to a charge of injuring his junior by stomping on the victim's stomach with spike boots.
How Indian billionaire Gautam Adani's alleged bribery scheme took off and unraveled
The indictment was unsealed on Nov. 20, prompting a $27 billion plunge in Adani Group companies' market value.
Elon Musk blasts Australia's planned ban on social media for children
Several countries have already vowed to curb social media use by children through legislation, but Australia's policy could become one of the most stringent.
Trump picks Pam Bondi for US Attorney General after Gaetz withdraws
Bondi was the top law enforcement officer of the country's third most populous state from 2011 to 2019, and served on Trump's Opioid and Drug Abuse Commission during his first administration.
Ringgit extends uptrend against greenback in early trade
At 8 am, the local currency climbed to 4.4600/4700 against the greenback.
Lebanon's only burn unit treats toddlers after Israeli strikes
The hospital hallways echo with the screams of children as anxious parents await news from doctors.
AI revolutionising sports to develop world-class athletes
Can a young Orang Asli child from Gua Musang, Kelantan be turned into an Olympic champion in 2036?
Selangor records 1,354 out-of-wedlock teen pregnancies from 2023 to Sept 2024
Anfaal Saari emphasises the seriousness of the issue, especially involving children and teenagers under 18 years old.
ICC issues arrest warrants for Netanyahu and Gallant
The International Criminal Court (ICC) has issued arrest warrants for Israeli Prime Minister Benjamin Netanyahu and former Defense Minister Yoav Gallant.