DeadRinger: Chinese APTs strike major telecommunications companies

silversurfer

Level 85
Thread author
Verified
Helper
Top poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
7,678
Researchers have disclosed three cyberespionage campaigns focused on compromising networks belonging to major telecommunications companies.

On Tuesday, Cybereason Nocturnus published a new report on the cyberattackers, believed to be working for "Chinese state interests" and clustered under the name "DeadRinger."

According to the cybersecurity firm, the "previously unidentified" campaigns are centered in Southeast Asia -- and in a similar way to how attackers secured access to their victims through a centralized vendor in the cases of SolarWinds and Kaseya, this group is targeting telcos.

Cybereason believes the attacks are the work of advanced persistent threat (APT) groups linked to Chinese state-sponsorship due to overlaps in tactics and techniques with other known Chinese APTs.
 

cruelsister

Level 39
Verified
Helper
Top poster
Content Creator
Well-known
Apr 13, 2013
2,871
It's very sad that some inconsequential security companies are so eager to gain publicity that they have to publish reports of "NEW ATTACKS" when the mechanism and threat actors have been known for a number of years. The only thing worth noting here is that Cybereason didn't actually quote past Mandiant research.

Beware clickbait.