Advertisement
Gulfstream banner

News

Articles

Information

Resources

Advancing UK Aerospace, Defence, Security & Space Solutions Worldwide
  • Home
  • /
  • Security
  • /
  • NCSC and partners issue alert about China state-sponsored cyber attacks

Security

NCSC and partners issue alert about China state-sponsored cyber attacks

Posted 10 July 2024
The UK and international allies have issued a new alert which shines a light on how China state-sponsored actors have evolved their techniques for launching cyber attacks.

Above: The National Cyber Security Centre (NCSC), Nova South, London.
Image by Simona Flamigni / copyright Shutterstock

The National Cyber Security Centre – a part of GCHQ – has issued an advisory alongside partners in Australia, the US, Canada, New Zealand, Germany, the Republic of Korea and Japan, focusing on how one China state-sponsored cyber actor has carried out attacks against Australian networks.

Advertisement
ODU RT

The threat group APT40 has embraced the trend of exploiting vulnerable small-office and home-office (SoHo) devices as a launching pad for attacks. These devices are softer targets when they are not running the latest software, or are no longer supported with security updates and they more easily conceal malicious traffic.

Two technical case studies showing how these techniques are deployed have been shared to help network defenders identify this malicious activity, which is also used regularly worldwide – including by other China state-sponsored actors.

The UK has previously attributed APT40 as being part of the Chinese Ministry of State Security. Defenders are encouraged to follow the latest advice to help detect and mitigate the malicious activity.

Advertisement
ODU RT

The publication of this advisory follows a warning made by the Director of GCHQ in May about the “genuine and increasing cyber risk to the UK” posed by China.   

The advisory, titled 'PRC MSS tradecraft in action', has been co-sealed by the NCSC, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), the US Cybersecurity and Infrastructure Security Agency (CISA), the US National Security Agency (NSA), the US Federal Bureau of Investigation (FBI), the Canadian Cyber Security Centre (CCCS), the New Zealand National Cyber Security Centre (NCSC-NZ), the German Federal Intelligence Service (BND), the Republic of Korea’s National Intelligence Service (NIS) and NIS’ National Cyber Security Center, and Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) and National Police Agency (NPA).

It can be read on the ACSC website.

Advertisement
FIA2026 animated banner
UK urged to take AI cyber threats seriously

Security Events

UK urged to take AI cyber threats seriously

22 April 2026

At CYBERUK 2026 - currently taking place at the SEC Glasgow (21st - 23rd April) - Dr Richard Horne, the CEO of the National Cyber Security Centre (a part of GCHQ), gave a keynote speech focused on the challenges raised by rapid technological change dominated by AI and preparation for migration to post-quantum cryptography.

Ramboll appoints Darren Carlile as Director in Buildings

Defence Security

Ramboll appoints Darren Carlile as Director in Buildings

22 April 2026

Global architecture, engineering and sustainability consultancy, Ramboll, has appointed Darren Carlile as a Director in its Buildings business, with responsibility for growth and sales across Transformation and Public Services leading on the National Security and Government, Research and Polar sectors, supporting continued Government ...

Cranfield University develops plant blast barrier

Security

Cranfield University develops plant blast barrier

22 April 2026

New research has revealed how everyday plants can help protect the public from blast impacts, whilst transforming cities into greener, healthier spaces.

PentenAmio completes acquisition of Armour Communications

Security

PentenAmio completes acquisition of Armour Communications

21 April 2026

PentenAmio has today announced its acquisition of Armour Communications, following the relevant regulatory approvals.

Advertisement
ODU RT
Smiths Detection gains ECAC Certification for AI driven cabin baggage screening

Aerospace Security

Smiths Detection gains ECAC Certification for AI driven cabin baggage screening

20 April 2026

Smiths Detection has secured ECAC (European Civil Aviation Conference) certification for its iCMORE APIDS (Automated Prohibited Items Detection System), approved for deployment with the HI SCAN 6040 CTiX.

Securitas appoints Alan Rae as Area Director for UK North and BAE Systems

Defence Security

Securitas appoints Alan Rae as Area Director for UK North and BAE Systems

20 April 2026

Securitas UK has announced the appointment of Alan Rae to the newly created and expanded role of Area Director for UK North and BAE Systems.

Advertisement
ODU RT
Advertisement
FIA2026 animated banner

News

Articles

Information

Resources

© 2026 Advance - All rights reserved

Website by Silkstream

The views expressed are not necessarily those of ADS or its members. No responsibility or liability is accepted by ADS, the editorial team or the publisher for any loss occasioned to any person, legal or physical, acting or refraining from action as a result of any statement, fact, figure, expression of opinion or belief contained within this site.

Advertisement
Gulfstream banner