Saturday, September 7, 2024
HomeCyber AttackChinese Hackers Attacking Telecommunications Industry to Steal 5G Secrets

Chinese Hackers Attacking Telecommunications Industry to Steal 5G Secrets

Published on

The threat actors from China are now targeting the telecommunications organizations of Southeast Asia, Germany, Europe, the United States, India, and Vietnam.

The main motive of the Chines threat actors is to steal 5G secrets and data of the organizations. This attack was detected by the cybersecurity researchers at the U.S.-based security firm McAfee.

This campaign has considered having targeted at least 23 telecommunications companies. And the group behind the campaign is entitled “Operation Dianxun.”

- Advertisement - EHA

After a proper investigation, the cybersecurity analyst came to know that the group has many other names, it is also known as “Mustang Panda” and “RedDelta.”

This group has a long history of hacking and surveillance campaigns targeting organizations throughout the world, and now this group is focusing on compromising telecom providers.

However, the initial means of attack is not yet been recognized, but, it’s known that victims are pointed towards a malicious phishing domain that is under the control of the attackers that are utilized to deliver malware to sufferers.

The Defensive Architecture

Now the question arises that how architecture defense itself? Well to defend itself from this kind of attack, it needs different methods and tactics, and that must have potential impact.

According to the experts, it’s quite necessary to have a multi-layer strategy and interpret various steps. By doing all these one can understand the best way to deal with them one by one along with a multicultural security architecture. 

Moreover, McAfee’s Security Architecture has provided some methods and tactics that will help an organization protect against the tactics and techniques that are used in Operation Dianxun.

But, here, the primary motto is to shift-left and block or recognize a threat immediately within the Kill Chain, simply to restrict any further damage.

The researchers also affirmed that shifting-left starts with MVISION Insights, and it actively consolidates intelligence on the threat and presents all the details on the indicators of settlement and the MITRE methods used in the attack. 

Research & Threat Detection with MVISION EDR

The McAfee Web Gateway and MVISON Unified Cloud Edge can easily stop the primary entry vector. While the Endpoint Protection Platform can have the ability to block the dropper performance or confuse the malicious activities.

But all these can be performed only by using MVISION EDR, that’s why the MVISION EDR has the threat detection on the monitoring dashboard for two separate stages and means of the attack.

So, to halt such targeted threat campaigns like Operation Dianxun, victims must build an adaptive and combined security architecture that will surely make it more difficult for hackers to gain and increase flexibility in the business.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity, and hacking news updates.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

BBTok Abuses Legitimate Windows Utility Command Tool to Stay Undetected

Cybercriminals in Latin America have increased their use of phishing scams targeting business transactions...

Predator Spyware Exploiting “one-click” & “zero-click” Flaws

Recent research indicates that the Predator spyware, once thought to be inactive due to...

Tropic Trooper Attacks Government Organizations to Steal Sensitive Data

Tropic Trooper (aka KeyBoy, Pirate Panda, and APT23) is a sophisticated cyberespionage APT group,...

NoiseAttack is a Novel Backdoor That Uses Power Spectral Density For Evasion

NoiseAttack is a new method of secretly attacking deep learning models. It uses triggers...

Free Webinar

Decoding Compliance | What CISOs Need to Know

Non-compliance can result in substantial financial penalties, with average fines reaching up to $4.5 million for GDPR breaches alone.

Join us for an insightful panel discussion with Chandan Pani, CISO - LTIMindtree and Ashish Tandon, Founder & CEO – Indusface, as we explore the multifaceted role of compliance in securing modern enterprises.

Discussion points

The Role of Compliance
The Alphabet Soup of Compliance
Compliance
SaaS and Compliance
Indusface's Approach to Compliance

More like this

BBTok Abuses Legitimate Windows Utility Command Tool to Stay Undetected

Cybercriminals in Latin America have increased their use of phishing scams targeting business transactions...

Predator Spyware Exploiting “one-click” & “zero-click” Flaws

Recent research indicates that the Predator spyware, once thought to be inactive due to...

Tropic Trooper Attacks Government Organizations to Steal Sensitive Data

Tropic Trooper (aka KeyBoy, Pirate Panda, and APT23) is a sophisticated cyberespionage APT group,...