{"id":7386,"date":"2020-11-06T11:52:33","date_gmt":"2020-11-06T18:52:33","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?p=7386"},"modified":"2023-04-20T02:35:50","modified_gmt":"2023-04-20T09:35:50","slug":"top-25-exploited-vulnerabilities-by-chinese-sponsored-hackers","status":"publish","type":"post","link":"https:\/\/webdev.securin.xyz\/articles\/top-25-exploited-vulnerabilities-by-chinese-sponsored-hackers\/","title":{"rendered":"Top 25 Vulnerabilities Exploited by Chinese Sponsored Hackers"},"content":{"rendered":"
On June 8, 2022, the CISA, the FBI, and the NSA have issued a joint advisory<\/a> to warn organizations about Chinese cyber-espionage attacks.\u00a0 The advisory reveals a list of 16 CVEs exploited by Chinese threat actors. It also stated that the attacks are primarily aimed at telecommunications companies and are conducted by exploiting vulnerabilities. It has also suggested that organizations should take additional mitigation steps to remove such attacks in the initial stage.<\/p>\n The National Security Agency listed 25 vulnerabilities that are being targeted by Chinese state sponsored cyber attackers popularly known as APT41. Know more about these vulnerabilities and patch them before you fall prey to a breach.<\/p><\/blockquote>\n We examined 25 vulnerabilities listed in the security advisory and analyzed them for interesting correlations.<\/p>\n Here are our findings –<\/p>\n <\/p>\n Among these 25 weaponized, 21 CVEs rank under Top 25 Common Weakness Enumeration (CWE) making them easy to exploit and the rest four CVEs are ranking under Top 30.<\/p>\n\n
\nOut of 25 vulnerabilities, 18 CVEs have known exploits. Given below are the details.<\/p>\n