A cyberespionage group, identified as TGR-STA-1030, has compromised government and critical infrastructure systems in 37 countries, with evidence suggesting links to China. The group has targeted law enforcement, finance ministries, and telecommunications, raising serious national security concerns.

Ribbon, a major US telecom backbone provider, was targeted by a nation-state hacker. While no critical data was believed to be compromised, the company acknowledged that some customer files on two laptops were accessed. The attack is suspected to have ties to China, known for its cyberespionage activities.

A significant data breach at Knownsec, a Chinese cybersecurity firm, leaked over 12,000 classified documents detailing advanced state-sponsored cyber tools and a list of global surveillance targets. The breach, which occurred in November 2025, revealed extensive cyber espionage activities and sophisticated attack methods.

A China-linked hacking group known as Salt Typhoon has successfully breached the satellite communications firm Viasat. This incident highlights the ongoing risks to critical infrastructure from state-sponsored cyber threats, particularly in the context of geopolitical tensions.

The article discusses a new malware identified as "Sparrow," attributed to a Chinese cyber espionage group known as FamousSparrow. This malware poses a significant threat to organizations in the Americas by exploiting vulnerabilities in various systems to conduct surveillance and data theft.

Over 4 billion user records, including sensitive financial, WeChat, and Alipay data, were exposed in what is believed to be the largest data leak in China’s history. The dataset, comprising 631 gigabytes, was left unprotected and is thought to have been collected for surveillance and profiling purposes. Affected individuals face significant risks with no clear recourse due to the anonymity of the data's source.

The article discusses China's covert capabilities, particularly focusing on the intricacies of their cyber operations and espionage tactics. It highlights the use of advanced technologies and tactics that enable China to conduct covert activities, impacting global cybersecurity and geopolitical dynamics.

Canadian telecommunications companies have reported being victims of cyberattacks linked to espionage activities orchestrated by China. The breaches have raised significant security concerns and prompted discussions about national defense and the integrity of communication infrastructures. Authorities are investigating the extent of the impact and potential vulnerabilities exposed by these incidents.

China's Salt Typhoon cyber espionage campaign has compromised information from millions of Americans and targeted over 80 countries since its inception in 2019, according to an FBI official. The campaign has affected around 200 American organizations, including major telecommunications companies, and highlights a drastic shift in the scale of indiscriminate targeting compared to previous espionage activities. Victims include high-profile officials, with concerns raised about the reckless nature of these cyber operations.

Chinese authorities have advised tech companies to refrain from purchasing Nvidia's latest RTX Pro 6000D chip, further complicating U.S.-China relations amid ongoing trade tensions. This move is part of a broader strategy targeting Nvidia, which is currently the world's most valuable company.

A significant smishing campaign attributed to a Chinese-speaking threat actor, known as the Smishing Triad, has exploited over 194,000 domains to gather sensitive information, including Social Security numbers. The campaign impersonates various services, targeting users worldwide, and employs a decentralized approach to evade detection.