Cloud app providers, cloud data management firms, and privilege access management vendors have been subjected to supply chain attacks by Chinese state-sponsored cyberespionage operation Silk Typhoon as part of efforts to compromise customer environments since late last year, according to SC Media.Aside from exploiting breached IT services' API keys and credentials for reconnaissance and data exfiltration activities, Silk Typhoon also deployed web shells and exploited several zero-day vulnerabilities while ensuring stealth through covert networks, according to a report from the Microsoft Threat Intelligence team.Ensar Seker, chief security officer at SOCRadar, said the targeting by Silk Typhoon was akin to the far-reaching SolarWinds and MOVEit supply chain intrusions."This development is yet another wake-up call that nation-state cyber operations are becoming more refined, leveraging trusted IT solutions to remain stealthy and persistent," said Seker. "Organizations must move beyond traditional perimeter defenses and adopt a proactive security posture to counter this evolving threat landscape."
You can skip this ad in 5 seconds