U.S. Cybersecurity and Infrastructure Security Agency: Chinese cyberattackers are exploiting known vulnerabilities to target public and private companies in the United States. A joint advisory from CISA, FBI and NSA detail tactics, techniques and procedures. It lists the top vulnerabilities, especially CVEs, in network devices that are regularly exploited. The attackers use open-source tools, such as RouterSploit and RouterScan, to explore known vulnerabilities for exploitation, the advisory says. It says they accessed “hop points” or compromised servers from China-based IP addresses for obfuscation purposes.”]
Source: https://www.cuinfosecurity.com/cisa-says-chinese-cyberattackers-are-targeting-us-telcos-a-19251