GLOBAL SITUATIONMONITORING

482 published briefsUTCSun, Apr 5 09:40:57

Intelligence Tag

China-Linked Hackers

Hackers linked to China

3 intelligence briefs← Intelligence Hub

China-linked UAT-9244 used TernDoor, PeerTime, and BruteEntry in South American telecom attacks

Cisco Talos says China-linked threat actor UAT-9244 has targeted telecommunications providers in South America since 2024, using the TernDoor, PeerTime, and BruteEntry implants across Windows, Linux, and edge devices in a campaign it says is closely associated with FamousSparrow.

Peter Chofield

Mar 16, 2026

1–2 minutes
Volt Typhoon: China’s Critical Infrastructure Pre-Positioning Campaign

Volt Typhoon is a China-linked intrusion campaign that U.S. agencies say targeted communications, energy, transportation, and water systems while using stealthy living-off-the-land tradecraft and compromised routers to hide its activity.

Reza Rafati

Mar 9, 2026

6–9 minutes
China-Linked Hackers Exploit Legacy Flaws and IIS Servers in Global Espionage Surge

Chinese state-linked cyber actors are increasingly leveraging well-known vulnerabilities and exploiting server misconfigurations to establish enduring footholds within critical networks globally, according to recent reports from cybersecurity researchers.

Reza Rafati

Nov 7, 2025

2–3 minutes