The United States continues to grapple with cyber intrusions emanating from sophisticated hacking groups affiliated with the Chinese government.
In December 2023, the U.S. government conducted an extensive operation to disrupt a Chinese state-sponsored botnet that was being used to conceal attacks against American critical infrastructure organizations, the Justice Department announced this week.
The botnet, known as the KV Botnet, was comprised of hundreds of compromised small office and home office (SOHO) routers located in the United States. It was controlled by a prolific Chinese hacking group tracked as Volt Typhoon. The attackers used the network of infected routers to disguise further intrusion attempts into utilities, communications firms, and other critical sectors.