#telecommunications-targeting

[ follow ]
#linux-malware #post-exploitation #socks5-proxy #command-and-control #cybersecurity-threat #chinese-apt
Information security
fromThe Hacker News
11 hours ago

Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor

Showboat is a modular Linux post-exploitation malware used against a Middle East telecom provider, providing remote shell, file transfer, and SOCKS5 proxy capabilities.
Information security
fromTheregister
2 months ago

Google and friends disrupt suspected Beijing espionage op

Google disrupted UNC2814, a China-linked group conducting widespread cyberattacks on telecommunications and government organizations across multiple continents using Google Sheets API for command-and-control operations.
fromSecurityWeek
2 months ago

Google Disrupts Chinese Cyberespionage Campaign Targeting Telecoms, Governments

The attacker was using API calls to communicate with SaaS apps as command-and-control (C2) infrastructure to disguise their malicious traffic as benign, a common tactic used by threat actors when attempting to improve the stealth of their intrusions. Rather than abusing a weakness or security flaw, attackers rely on cloud-hosted products to function correctly and make their malicious traffic seem legitimate.
Information security
Information security
fromThe Hacker News
7 months ago

China-Linked PlugX and Bookworm Malware Attacks Target Asian Telecom and ASEAN Networks

A new PlugX malware variant targets Central and South Asian telecommunications and manufacturing, combining RainyDay and Turian features and indicating shared tools or actor overlap.
[ Load more ]