State-sponsored Threat Groups Target Telcos, Steal 5G Secrets

2021-03-17 15:08

Chinese-language APTs are targeting telecom companies in cyberespionage campaigns aimed at stealing sensitive data and trade secrets tied to 5G technology, according to researchers.

"While the initial vector for the infection is not entirely clear. [We believe] with a medium level of confidence that victims were lured to a domain under control [a] the threat actor, from which they were infected with malware," according to McAfee researchers in a Tuesday report.

Given the tactics used in the campaign, researchers surmised it to be the work of known Chinese-language APTs RedDelta and Mustang Panda.

This time around, the groups seem to be gunning for sensitive data and aiming "To spy on companies related to 5G technology," researchers wrote.

The APTs used a multi-phased approach to the attacks, with the initial delivery vector likely coming in the form of a phishing attack using the internet as the first point of contact with victims, researchers said with "a medium level of confidence."

Researchers recommend "An adaptive and integrated security architecture" to defend against multi-layered attacks such as Diànxùn, "Which will make it harder for threat actors to succeed and increase resilience in the business."

News URL

https://threatpost.com/state-sponsored-threat-groups-target-telcos-steal-5g-secrets/164841/

#5G #statesponsored #telcos #threat