CISA Alert AA22-158A – People’s Republic of China state-sponsored cyber actors exploit network providers and devices. [CISA Cybersecurity Alerts]

The Cybersecurity Advisory highlights the ongoing efforts of People's Republic of China state-sponsored cyber actors to exploit publicly known vulnerabilities and establish a broad network of compromised global infrastructure. These actors use this network to exploit a wide variety of targets worldwide, including public and private sector organizations. The US government and critical infrastructure organizations should consider signing up for CISA's cyber hygiene services, including vulnerability scanning, to help reduce exposure to threats. US Defense Industrial Base organizations should enroll in the NSA Cybersecurity Collaboration Center's DIB Cybersecurity Service Offerings, such as Protective Domain Name System (PDNS) services, vulnerability scanning, and threat intelligence collaboration. All organizations should report incidents and anomalous activity to CISA's 24/7 Operations Center and the FBI via their local field office or the FBI's 24/7 CyWatch. The advisory also references previous reporting on People's Republic of China state-sponsored malicious cyber activity. It emphasizes the importance of learning more about cybersecurity threats and taking necessary measures to protect against them.