Oddbean new post about | logout
 China-Backed Hackers Leverage SIGTRAN, GSM Protocols to Infiltrate Telecom Networks

A new China-linked cyber espionage group has been attributed as behind a series of targeted cyber attacks targeting telecommunications entities in South Asia and Africa since at least 2020 with the goal of enabling intelligence collection.

Cybersecurity company CrowdStrike is tracking the adversary under the name Liminal Panda, describing it as possessing deep knowledge about telecommunications networks, the protocols that undergird telecommunications, and the various interconnections between providers.

The threat actor's malware portfolio includes bespoke tools that facilitate clandestine access, command-and-control (C2), and data exfiltration.

See more
The Hackers News: https://thehackernews.com/2024/11/china-backed-hackers-leverage-sigtran.html

Infosecurity magazine:
https://www.infosecurity-magazine.com/news/tmobile-breached-chinese/

#cybersecurity #c2 #hack #SaltTyphoon