Chinese hackers are exploiting several well-known software vulnerabilities, CISA says. The Chinese groups are also taking advantage of publicly available information and open source exploitation tools to target U.S. federal computer networks. CISA stresses that applying patches is the best defense against the attacks. The tools the hackers are using include the Shodan search engine, used to identify vulnerable connected devices, and the Common Vulnerabilities and Exposure, or CVE, and National Vulnerability, databases. The threat actors often begin targeting, scanning and probing within days of a vulnerability being made public.”]
Source: https://www.bankinfosecurity.com/cisa-chinese-hackers-targeting-us-agencies-a-14994