The U.S. has sanctioned Sichuan Silence and Guan Tianfeng due to their involvement in ransomware attacks targeting critical infrastructure during 2020, highlighting the commitment to accountability.
Guan Tianfeng exploited a critical vulnerability (CVE 2020-12271) in a Sophos firewall, employing a SQL injection attack to execute malicious scripts remotely.
The ransomware attack deployed by Guan and his co-conspirators involved stealing sensitive data before activating ransomware that encrypted every Windows device on compromised networks.
Despite the sophisticated planning of the cyber attack, Sophos swiftly deployed a patch that neutralized the exploit and rendered the ransomware attack ineffective, showcasing effective cybersecurity response.
Collection
[
|
...
]