""UNC3886 had launched a deliberate, targeted, and well-planned campaign against Singapore's telecommunications sector," CSA said. "All four of Singapore's major telecommunications operators ('telcos') - M1, SIMBA Telecom, Singtel, and StarHub - have been the target of attacks.""
""deep capabilities""
""some parts""
UNC3886 targeted Singapore's telecommunications sector, with all four major telcos—M1, SIMBA Telecom, Singtel, and StarHub—identified as targets. The actor has been active since at least 2022 and focuses on edge devices, virtualization technologies, VMware ESXi and vCenter environments, and network appliances. The adversary deployed sophisticated tools, including a weaponized zero-day that bypassed a perimeter firewall to exfiltrate technical data, and used rootkits to maintain persistence and conceal activity. Unauthorized access occurred to some parts of telco networks, including critical systems, but service disruption was not observed. A defensive operation named CYBER GUARDIAN was mounted to counter the threat.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]