Chinese cybersecurity firm facing US sanctions over alleged ransomware attacks




  • The US Treasury Dept. is bringing sanctions against a Chinese cybersecurity firm and one of its employees
  • The Government believes the employee is singlehandedly responsible for over 80,000 Sophos firewall breaches
  • Many of the targets were part of US critical infrastructure

Chinese cybersecurity firm Sichuan Silence has been sanctioned by the US Treasury Department’s Office of Foreign Assets Control (OFAC) for its role in a string of Ragnarok ransomware attacks in April of 2020, in which tens of thousands of firewalls were compromised across the globe.

Also sanctioned was an employee of the firm, Guan Tianfeng, who is allegedly single-handedly responsible for exploiting 81,000 Sophos firewalls. Guan discovered a zero-day exploit in the Sophos firewall and used this to compromise businesses, and steal information like passwords.



Source link

Leave a Reply

Your email address will not be published. Required fields are marked *