China-Linked Hackers Steal Login Data: US & Canada Issue Major Cybersecurity Warning
China-Linked Cyber Attack Exposed
China, the US, and Canada is the most powerful countries in the world; no one can beat them. recently, the agencies Cybersecurity and Infrastructure Security Agency(CISA), the National Security Agency(NSA)in the US, and the Canadian Centre for Cyber Security issued a joint advisory warning that China-linked hackers deployed malware named Brickstorm to infiltrate networks belonging to government and IT organizations.
According to some resources and advisories, once inside, hackers were able to steal login credentials and other sensitive information, an in some cased embed themselves for long-term access.
Using virtualization software VMware vSphere the malware particularly targeted organizations (from Broadom/ VMware) and showing how persistent and stealthy the attackers were in one case, which is the intrusion that started in April 2024 and remained undetected until as recently as September 2025.
broader implication: why the alert matters
Long-term, stealthy access (over months or even years) raises the possibility not just of data theft, but of sabotage or future intrusions. Indeed, the agencies warned that such access could be used for “disruption and potential sabotage.
This alert is part of a larger pattern of cyber-espionage efforts attributed to China by Western countries — suggesting a sustained, state-backed campaign rather than one-off attacks.
what is not publicly revealed yet
The agencies have not disclosed exactly which organizations (or how many) were compromised under this advisory.
It is not clear what specific “other sensitive information” beyond login data was taken — whether personal data, classified documents, credentials, or cryptographic keys.
There’s no public evidence yet indicating which victims (if any) outside governments or IT orgs may have been impacted.
China’s response and wider cyber-security climate
The Chinese government has denied the allegations, calling them “baseless.” A spokesperson for China’s embassy in Washington said they reject the assertions, noting no factual evidence was presented.
Investing.com
+2
The Star
+2
Security analysts note this case builds on earlier concerns: successive reports in 2025 have implicated China-linked hackers in attacks on telecommunications firms, government agencies, infrastructure providers — showing a broad, global campaign rather than isolated incidents.
TechCrunch
+2
Zicos
+2
For organizations and governments worldwide, this raises renewed urgency over patching, hardening virtualized environments (especially VMware vSphere), and reviewing long-term network access controls.
last:
US, Canada Reveal Massive Cyber attack: and sensitive data stolen by china-linked group this is so bad for countries.
North America on high alert and critical cyber threat.