Volt Typhoon exploiting Versa Director zero-day flaw

Chinese state-sponsored hacking group Volt Typhoon reportedly exploited a zero-day vulnerability in SD-WAN software Versa Director, according to Lumen Technologies’ Black Lotus Labs. Researchers found that the threat group used this vulnerability to upload malicious files with administrator-level access. The affected networks were based in four US and one non-US organisation, across the ISP, MSP, and IT sectors.