Advancing UK Aerospace, Defence, Security & Space Solutions Worldwide
  • Home
  • /
  • Security
  • /
  • NCSC and partners issue alert about China state-sponsored cyber attacks

Security

NCSC and partners issue alert about China state-sponsored cyber attacks

The UK and international allies have issued a new alert which shines a light on how China state-sponsored actors have evolved their techniques for launching cyber attacks.

Above: The National Cyber Security Centre (NCSC), Nova South, London.
Image by Simona Flamigni / copyright Shutterstock

The National Cyber Security Centre – a part of GCHQ – has issued an advisory alongside partners in Australia, the US, Canada, New Zealand, Germany, the Republic of Korea and Japan, focusing on how one China state-sponsored cyber actor has carried out attacks against Australian networks.

Advertisement
ODU RT

The threat group APT40 has embraced the trend of exploiting vulnerable small-office and home-office (SoHo) devices as a launching pad for attacks. These devices are softer targets when they are not running the latest software, or are no longer supported with security updates and they more easily conceal malicious traffic.

Two technical case studies showing how these techniques are deployed have been shared to help network defenders identify this malicious activity, which is also used regularly worldwide – including by other China state-sponsored actors.

The UK has previously attributed APT40 as being part of the Chinese Ministry of State Security. Defenders are encouraged to follow the latest advice to help detect and mitigate the malicious activity.

Advertisement
ODU RT

The publication of this advisory follows a warning made by the Director of GCHQ in May about the “genuine and increasing cyber risk to the UK” posed by China.   

The advisory, titled 'PRC MSS tradecraft in action', has been co-sealed by the NCSC, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), the US Cybersecurity and Infrastructure Security Agency (CISA), the US National Security Agency (NSA), the US Federal Bureau of Investigation (FBI), the Canadian Cyber Security Centre (CCCS), the New Zealand National Cyber Security Centre (NCSC-NZ), the German Federal Intelligence Service (BND), the Republic of Korea’s National Intelligence Service (NIS) and NIS’ National Cyber Security Center, and Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) and National Police Agency (NPA).

It can be read on the ACSC website.

Advertisement
General Atomics LB
Unifi secures Oxford Airport ground handling and security contracts

Aerospace Security

Unifi secures Oxford Airport ground handling and security contracts

17 April 2025

Unifi has secured its first business aviation ground handling contract and its third Fixed Base Operation/FBO security contract in the UK at London Oxford Airport, marking a major expansion of its services and a new milestone in its global growth.

M Group acquires Telent

Defence Security

M Group acquires Telent

16 April 2025

M Group has aquired Telent, a provider of operational technology and digital solutions for Critical National Infrastructure (CNI) across the UK and Ireland.

Met brings leader of fraud platform to justice 

Security

Met brings leader of fraud platform to justice 

15 April 2025

A massive worldwide operation led by the Met has seen a prolific cyber-criminal sent to prison for eight-and-a-half years.

XTI Aerospace subscale model of latest TriFan 600 unveiled at Avalon Airshow

Aerospace Security Events

XTI Aerospace subscale model of latest TriFan 600 unveiled at Avalon Airshow

14 April 2025

XTI Aerospace unveiled its tradeshow model of the TriFan 600 aircraft at last month's Avalon Airshow, the southern hemisphere's largest airshow, in Melbourne, Australia.

Advertisement
DSEI 2025
UK invests in quantum tech to tackle crime

Security

UK invests in quantum tech to tackle crime

14 April 2025

The UK government is investing £121 million in quantum technology to tackle crime, fraud and money laundering, while reinforcing its global leadership in the field and driving economic savings.

NCA investigation leads to Border Force seizing £1m at Heathrow

Aerospace Security

NCA investigation leads to Border Force seizing £1m at Heathrow

11 April 2025

As a result of a National Crime Agency (NCA) investigation, a man has been charged with money laundering after the seizure of £1 million in suitcases by the UK's Border Force at Heathrow Airport.

Advertisement
ODU RT