Sustained Campaign Using Chinese Espionage Tools Targets Telcos


Attackers using tools associated with Chinese espionage groups have breached multiple telecom operators in a single Asian country in a long-running espionage campaign.

The attackers placed backdoors on the networks of targeted companies and also attempted to steal credentials. The attacks have been underway since at least 2021, with evidence to suggest that some of this activity may even date as far back as 2020. Virtually all of the organizations targeted were telecoms operators, with the addition of a services company that serves the telecoms sector and a university in another Asian country.

Read more…
Source: Symantec


Sign up for our Newsletter


Related:

  • Starlink’s local bank accounts are frozen as X prepares to be shut down in Brazil

    August 30, 2024

    A judge in Brazil has blocked Starlink’s bank accounts in the country amid a deepening dispute with X. The move comes as the same Supreme Court judge has threatened to shut down X in the country, and is a direct response to the ongoing legal battle with the social media company, Reuters reported. X owner Elon ...

  • #StopRansomware: RansomHub Ransomware

    August 29, 2024

    The Federal Bureau of Investigation (FBI) and partners are releasing this joint advisory to disseminate known RansomHub ransomware IOCs and TTPs. These have been identified through FBI threat response activities and third-party reporting as recently as August 2024. RansomHub is a ransomware-as-a-service variant—formerly known as Cyclops and Knight—that has established itself as an efficient and successful ...

  • Heriot-Watt University begins work on new £2.5m cyber attack station

    August 29, 2024

    Work has begun on the development of a new optical ground station at Heriot-Watt University in Edinburgh. The £2.5m facility will demonstrate and test satellite quantum secure communications and is scheduled to be fully operational by late autumn this year. The Quantum Communications Hub Optical Ground Station (HOGS) will help to tackle future cyberattacks by researching ...

  • T-Mobile Fined $60 Million to Settle Alleged National Security Violations

    August 15, 2024

    Wireless company T-Mobile US has agreed to pay about $60 million to settle allegations it failed to promptly report incidents of unauthorized data access in violation of a national security agreement that allowed its merger with rival Sprint, according to senior U.S. government officials. The civil penalty, announced Wednesday by the Committee on Foreign Investment in ...

  • 5G network flaws could be abused to let hackers spy on your phone

    August 12, 2024

    5G basebands could be exploited by attackers to allow them to send fake messages to your contacts, or even hand over your credentials using a very real-looking website, experts have warned. Unveiled at the Black Hat cybersecurity conference, a research group from Pennsylvania State University presented their vulnerability sniffing tool 5GBaseChecker. Read more… Source: MSN News Sign up for ...

  • Optus and Medibank Data Breach Cases Allege Cyber Security Failures

    August 2, 2024

    2022 was a big year for cyber security breaches in Australia. Both telecommunications provider Optus and private health insurer Medibank suffered large-scale data breaches affecting tens of millions of Australians, leading to heightened regulatory and business focus on cyber security in the years since. The two data breaches also led to legal action, with recent court ...