According to the Treasury Department’s Office of Foreign Assets Control (OFAC), between 2022 and 2023, Flax Typhoon leveraged infrastructure tied to Integrity Technology to exploit multiple networks and send stolen data back to its servers. As a result, the U.S. has blocked Integrity Technology’s assets within its jurisdiction and prohibited financial institutions from engaging in transactions with the company.
Flax Typhoon, a state-sponsored group, exploits known vulnerabilities to gain access to victims’ networks and maintains persistent control using legitimate remote access tools. OFAC described Chinese cyber actors as “one of the most active and persistent threats to U.S. national security,” regularly targeting government systems and critical infrastructure.
Bradley T. Smith, Acting Under Secretary of the Treasury for Terrorism and Financial Intelligence, stated: “The Treasury Department will not hesitate to hold malicious cyber actors and their enablers accountable. We are committed to disrupting these threats and bolstering public and private sector cybersecurity.”
This announcement follows recent revelations of Chinese-backed hackers breaching U.S. Treasury systems and last year’s warning about Volt Typhoon, another Chinese cyber group targeting critical infrastructure as part of a strategy to potentially disrupt essential services during geopolitical conflicts.
Source: Infosecurity Magazine
The European Cyber Intelligence Foundation is a nonprofit think tank specializing in intelligence and cybersecurity, offering consultancy services to government entities. To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net, or you can try yourself using check.website.