The U.S., Australia, India, and the UK are having their government institutions subjected to new attacks by Chinese advanced persistent threat operation Volt Typhoon leveraging a pair of critical vulnerabilities in end-of-life Cisco small business RV320/325 VPN routers, tracked as CVE-2019-1652 and CVE-2019-1653, according to SecurityWeek. Nearly 30% of vulnerable Cisco routers have been compromised by Volt Typhoon over 37 days, with one of the devices based on New Caledonia believed to have been used to facilitate improved targeting, a report from SecurityScorecard revealed.
Source: SC Magazine