Generic coding language design with red background

People's Republic of China Threat Overview and Advisories

CISA works to ensure U.S. critical infrastructure, government partners, and others have the information and guidance to defend themselves against Chinese State-Sponsored cybersecurity risks.

Report to CISA

CISA works to ensure U.S. critical infrastructure, government partners, and others have the information and guidance to defend themselves against People’s Republic of China (PRC) state-sponsored cybersecurity activity. 

According to our joint advisory on PRC state-sponsored activity, PRC state-sponsored cyber actors are seeking to pre-position themselves on information technology (IT) networks for disruptive or destructive cyberattacks against U.S. critical infrastructure in the event of a major crisis or conflict with the United States:

  • CISA, the National Security Agency (NSA), and Federal Bureau of Investigation (FBI) have confirmed that the PRC state-sponsored cyber actors known as Volt Typhoon have compromised the IT environments of multiple critical infrastructure organizations.
    • These organizations are primarily in the Communications, Energy, Transportation Systems, and Water and Wastewater Systems Sectors in the continental and non-continental United States and its territories, including Guam.
  • The choice of targets and pattern of behavior is not consistent with traditional cyber espionage or intelligence-gathering operations.
  • CISA, NSA, and FBI assess with high confidence that Volt Typhoon actors are pre-positioning themselves on IT networks to enable lateral movement to operational technology assets to disrupt functions.
Guidance: Mobile Communications Best Practice Guidance for High Value Individuals

Mobile Communications Best Practice Guidance

This guidance was crafted in response to identified cyber espionage activity by People’s Republic of China (PRC) government-affiliated threat actors targeting commercial telecommunications infrastructure.

View advisory
An image portraying a cybersecurity threat

CISA and Joint CISA Advisories

Review China-specific advisories here.

View advisories

Key Resources

Advanced Persistent Threats

Defending Against Nation-State Cyber Threats

Find more information on nation-state adversaries and related resources.

image of crowded escalators

Physical Security

Find preventative and protective strategies to strengthen physical security.

A group of people in a course sitting in seats listening to an instructor up front

Securing Public Gatherings

Find more information on mitigating security risks associated with public gatherings.

CISA Voluntary Cyber Incident Reporting

CISA Voluntary Cyber Incident Reporting

This resource is designed to help entities that may be considering voluntarily reporting cyber incidents understand “who” CISA recommends report an incident, “why and when” CISA recommends they report, as well as “what and how to report.”