Sustained Campaign Using Chinese Espionage Tools Targets Telcos


Attackers using tools associated with Chinese espionage groups have breached multiple telecom operators in a single Asian country in a long-running espionage campaign.

The attackers placed backdoors on the networks of targeted companies and also attempted to steal credentials. The attacks have been underway since at least 2021, with evidence to suggest that some of this activity may even date as far back as 2020. Virtually all of the organizations targeted were telecoms operators, with the addition of a services company that serves the telecoms sector and a university in another Asian country.

Read more…
Source: Symantec


Sign up for our Newsletter


Related:

  • Senators say US military is failing to secure its phones from foreign spies

    December 4, 2024

    Two U.S. senators are accusing the Department of Defense (DOD) of not doing enough to protect the communications of its military personnel, as the U.S. government contends with an ongoing Chinese hacking campaign targeting American phone and internet giants. The senators say the Department of Defense still relies too heavily on old-fashioned landline calls, and unencrypted ...

  • Enhanced Visibility and Hardening Guidance for Communications Infrastructure

    December 3, 2024

    The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), Australian Signals Directorate’s (ASD’s) Australian Cyber Security Centre (ACSC), Canadian Cyber Security Centre (CCCS), and New Zealand’s National Cyber Security Centre (NCSC-NZ) warn that People’s Republic of China (PRC)-affiliated threat actors compromised networks of major global telecommunications providers to ...

  • Pakistan tests secret China-like ‘firewall’ to tighten online surveillance

    November 26, 2024

    Pakistan’s government has deployed Chinese technology to build what some senior officials familiar with the project are calling a new, national internet “firewall” that will allow authorities to monitor online traffic and regulate the use of popular apps with greater control than before. The project aims to upgrade the government’s web monitoring capabilities at the country’s ...

  • Internet, mobile services disrupted in major cities, including Karachi, Islamabad

    November 24, 2024

    Communication services across Pakistan are hit by significant disruptions as the Pakistan Tehreek-e-Insaf (PTI) gears up for its much-anticipated “do-or-die” protest in Islamabad. Major cities like Karachi, Islamabad, and Rawalpindi have reported interruptions in mobile internet and other services, causing inconvenience for residents and businesses alike. These outages are part of the government’s intensified security measures ...

  • T-Mobile Targeted in Chinese Cyber-Espionage

    November 16, 2024

    Chinese hackers feasted on T-Mobile as their latest cyber espionage victim. The leading carrier in the US is not the only company affected as other telecom giants are at risk of getting infiltrated. Hackers linked to a Chinese intelligence agency invaded T-Mobile’s network in a months-long operation designed to monitor cellphone communications of high-value intelligence targets, ...

  • Threats in space (or rather, on Earth): Internet-exposed GNSS receivers

    November 13, 2024

    Global Navigation Satellite Systems (GNSS) are collections, or constellations of satellite positioning systems. There are several GNSSs launched by different countries currently in operation: GPS (US), GLONASS (Russia), Galileo (EU), BeiDou Navigation Satellite System (BDS, China), Navigation with Indian Constellation (NavIC, India) and Quazi-Zenith Satellite System (QZSS, Japan). These systems are used for positioning, navigation ...