Chinese espionage group Silk Typhoon has new tactics to target US networks

Since late 2024, Silk Typhoon has been observed leveraging stolen API keys and credentials to infiltrate IT providers, managed service providers (MSPs), and cloud data management firms