Cybersecurity Concerns Rise as Chinese Hackers Target Critical Infrastructure in US and Canada

Nine U.S. and Canadian cybersecurity agencies have reported that Chinese-linked hackers are deploying malware known as 'Brickstorm' to infiltrate critical infrastructure. This malware allows the hackers to maintain long-term access for potential sabotage, according to an advisory from the Cybersecurity and Infrastructure Security Agency, the National Security Agency, and the Canadian Centre for Cyber Security.

The hackers have targeted multiple government services and IT entities, stealing login credentials and sensitive information. The advisory indicates one case where hackers maintained access from April 2024 to September 2025 after penetrating a company.

They are specifically targeting VMware vSphere, a product from Broadcom's VMware, which is used to manage virtual machines within networks. This situation highlights the growing cybersecurity threats nations face, necessitating enhanced vigilance and robust security measures among organizations.

CISA's acting director, Madhu Gottumukkala, emphasized that these operations not only involve traditional espionage but also the development of new vulnerabilities to further exploit additional targets.