micro-wired share a report of Safety week: The researchers have [discovered three advanced threat groups affiliated with the Chinese military](//www.securityweek.com/deadringer-three-pronged-attack-chinese-military-actors-against-major-telcos) simultaneously targeting and compromising the same Southeast Asian telecom operators. The attack groups affected are Soft Cell, Naikon, and a third group, possibly Emissary Panda (also known as APT27) … Cybereason has released details of a [three-pronged attack by groups affiliated with the Chinese army](//www.cybereason.com/blog/deadringer-exposing-chinese-threat-actors-targeting-major-telcos) against cellular network providers in Southeast Asia. Disturbingly, Yonatan Striem-Amit, CTO and co-founder of Cybereason, told SecurityWeek: “We have discovered and have evidence that advanced Chinese groups have been using Hafnium zero days since at least 2017.” Cellular networks are a prime target for nation states because they provide an excellent springboard for many other types of attacks and different targets. “At this point,” said Striem-Amit, “the attacks seem like a starting point for a major spy campaign. We all carry a device in our pocket that knows where we are, where we’ve been and with whom. we are …” The surprising feature, aside from their stealth duration, is that three groups, all associated with the Chinese government and often sharing tactics, techniques, and procedures, attacked the same targets at the same time – and were even seen simultaneously on them. same end points. . It is therefore not clear whether the groups were separately instructed to target telecom operators, or whether they were guided by a single source within the Chinese military … The only thing that is clear is that telecom operators are a major target for China, and which it has known and used for many years of serious zero-day vulnerabilities in Exchange. Researchers uncover three-way cyberattack by Chinese military actors on Southeast Asian telecom operators Source link Researchers uncover three-way cyberattack by Chinese military actors on Southeast Asian telecom operators