A Chinese hacking group exploited a software bug to compromise several internet companies in the United States and abroad, according to cybersecurity firm Lumen Technologies. The hackers targeted a vulnerability in Versa Director, a software platform used by Versa Networks.
Five victims, including four in the US, were identified in the attack. Lumen did not disclose further details about the victims. Versa Networks issued an advisory urging customers to upgrade their software to fix the bug.
Lumen researchers linked the attack to a group known as “Volt Typhoon,” allegedly backed by the Chinese government. The attacks began on June 12, with the Chinese embassy in Washington declining to comment on the allegations.
US officials confirmed the exploitation of the Versa vulnerability and raised concerns about China’s increasing cyber threats. FBI director Christopher Wray highlighted the potential danger posed by Chinese hacking groups like Volt Typhoon to US critical infrastructure.