Chinese Ministry of State Security

The Chinese Ministry of State Security (MSS) has been linked by CISA and other agencies to multiple cyber APTs (Advanced Persistent Threats). CISA state that MSS-affiliated groups have use open-source information in the planning and conduct of operations and exploit vulnerabilities to gain access to victim networks.

go.recordedfuture.com

https://go.recordedfuture.com/hubfs/reports/cta-2023-0808.pdf

www.justice.gov

https://www.justice.gov/opa/pr/four-chinese-nationals-working-ministry-state-security-charged-global-computer-intrusion

www.gov.uk

https://www.gov.uk/government/news/uk-holds-china-state-affiliated-organisations-and-individuals-responsible-for-malicious-cyber-activity

www.cyber.gov.au

https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/apt40-advisory-prc-mss-tradecraft-in-action

home.treasury.gov

https://home.treasury.gov/news/press-releases/jy2205

www.cisa.gov

https://www.cisa.gov/news-events/cybersecurity-advisories/aa20-258a

www.recordedfuture.com

https://www.recordedfuture.com/blog/chinese-mss-behind-apt3

news.risky.biz

https://news.risky.biz/risky-biz-briefing-the-i-soon-data-leak/

intrusiontruth.wordpress.com

https://intrusiontruth.wordpress.com/2022/07/22/chengdu-404/

www.mandiant.com

https://www.mandiant.com/resources/blog/initial-access-brokers-exploit-f5-screenconnect