GovInfoSecurity
August 19, 2021
August 4, 2021
dangun127) • August 3, 2021
(Photo: David Yu/Pixabay)
Chinese advanced persistent threat groups compromised networks of telecommunication providers across Southeast Asia in an effort to harvest customers sensitive communications, according to a new report from the security firm Cybereason. As in other Chinese cyberattacks, these APT campaigns exploited flaws in Microsoft Exchange servers.
The researchers uncovered several previously unidentified cyberattack campaigns infiltrating major providers and evading detection since at least 2017, Cybereason says.
Researchers identified three clusters of attacks associated with the campaign that it attributed to the Chinese APTs Soft Cell, Naikon and Threat Group-3390. The firm says overlaps in the attackers tactics, techniques and procedures suggest a connection between the groups.