Summer Regulatory Summit eBook

Internal Use Only

CCP's Volt Typhoon Threat: Overview

Volt Typhoon, a Chinese Communist Party-sponsored threat group, was discovered in critical infrastructure in Guam and other parts of the US in May 2023; believed active since 2021

This APT uses "living off the land" techniques to elude detection and maintain a presence in critical systems

Sole purpose is to preposition the Chinese government to enable damage or destruction of American infrastructure in the event of a conflict Designed to create societal chaos- no economic benefit to these actions and no apparent intelligence gathering rationale Threat actors have established presence in water utilities, oil and gas pipelines, power grids, and other utilities in the US Actions of these saboteurs could inflict mass American casualties; an active and direct threat to the American homeland and its military

Internal Use Only

CSBS' Ongoing Response to Volt Typhoon • State representatives are members of national Joint Cyber Defense Collaborative (JCDC) to address Volt Typhoon • Pilot program has been initiated to address MSP risks, including Volt Typhoon • CSBS gathers open-source threat information from US Government and other public resources • CSBS provides regular updates to the CSBS IT Advisory Team and commissioners • CSBS will hold more detailed commissioner briefings as necessary