Security News > 2021 > March > McAfee, the company, says Chinese attackers targeted Asian and US telcos
Security vendor McAfee has detected an attack it believes was likely aimed at telecoms companies in the hope of stealing information related to 5G networks.
McAfee has named the attack "Operation Diànxùn" and says it resembles past attacks perpetrated by groups named RedDelta and Mustang Panda.
The attack begins, McAfee's researchers assert, with visits to a faked Huawei careers page.
"One of the main differences from past attacks is the lack of use of the PlugX backdoor. However, we did identify the use of a Cobalt Strike backdoor," the researchers write.
McAfee telemetry suggested "Possible targets based in Southeast Asia, Europe, and the US were discovered in the telecommunication sector" along with "Strong interest in German, Vietnamese and India telecommunication companies."
McAfee also suggests the attack should not be vastly difficult to defend, by - surprise! - using its products.
News URL
https://go.theregister.com/feed/www.theregister.com/2021/03/18/operation_dianxun/
Related news
- Chinese snoops use F5, ConnectWise bugs to sell access into top US, UK networks (source)
- US charges Chinese nationals with cyber-spying on pretty much everyone for Beijing (source)
- A “cascade” of errors let Chinese hackers into US government inboxes (source)
- US senator wants to put the brakes on Chinese EVs (source)