Attacks Cloud Data Executive Decisions IoT Malware Mobile Network Security Strategy Threat Defense

Filter Categories

Attacks Cloud Data Executive Decisions IoT Malware Mobile Network Security Strategy Threat Defense

The threat actors behind multiple intrusions targeting Southeast Asian telcos

Watch this video to discover how various Chinese threat actors launched a series of attack campaigns on Southeast Asia’s telecommunications industry

Add bookmark

Cyber Security Hub Editor
08/23/2021

In this recording of a recent webinar, Assaf Dahan head of threat research at Cybereason Nocturnus, and Mor Levi, VP of global security practices at Cybereason, walk their audience through the espionage operations of various Chinese threat actors operating in Southeast Asia.

The webinar follows the launch of a major threat intelligence research report, DeadRinger: Exposing Chinese Threat Actors Targeting Major Telcos, by the Cybreason Nocturnus Research Team, which reveals the latest information on the telco threat landscape and the discovery of DeadRinger.

This new research details the discovery of several previously unidentified attack campaigns targeting the telecommunications industry across Southeast Asia, highlighting several clusters of attack activity which were identified and assessed, and the work of several prominent APT groups who are known to conduct operations aligned with the interests of the Chinese government.

Watch this video to find out:

How the attackers behind the intrusions attempted to compromise high-profile assets such as Microsoft Exchange servers, domain controllers (DC) and billing systems.
Who the multiple threat actor groups operating in the interest of China are and how overlaps exist between the clusters.
The latest adaptive, persistent and sophisticated threat actors, as well as the forensic evidence revealing the attacker’s operation date back to 2017.

Download the report: DeadRinger: Exposing Chinese Threat Actors Targeting Major Telcos

Tags: Threat Actor China Telecoms Cybereason Hafnium

Sponsored By:

Recommended

info@cshub.com/r/n

We hope you enjoy All Access from CS Hub!!<\/p>\r\n<p>Best Regards,<\/p>\r\n<p><a href=https://www.cshub.com/"https:////www.cshub.com///" target=\"_blank\">CS Hub Team<\/a><\/p>\r\n<p>P.S. Be sure to check out our other upcoming <a href=https://www.cshub.com/"https:////www.cshub.com//events?filter_format=ONLINE\%22 target=\"_blank\">All Access events here<\/a>.<\/p>\r\n<p>--------------------------------<\/p>\r\nConnect with us on Social Media: <a href=https://www.cshub.com/"https:////www.linkedin.com//groups//12067996///" target=\"_blank\">LinkedIn<\/a> | <a href=https://www.cshub.com/"https:////twitter.com//CSHubUSA/" target=\"_blank\">Twitter<\/a><\/p>\r\n<p>--------------------------------<\/p>\r\n<p>FAQS<\/p>\r\n<p><b>Can I invite my colleagues?<\/b><br>Yes of course! Please send them this link so they can register for free! [WebUrl]<\/p>\r\n\r\n<p><b>How do I access the sessions?<\/b><br>\r\nAll Access is run on Zoom Events. You should receive an email shortly from Zoom Events with your unique All Access link to the event lobby. Please hold on to that email ahead of the event. We\u2019ll also send you a reminder 24 hours before we go live!<\/p>\r\n\r\n<p><b>Will the agenda be updated?<\/b><br>\r\nYes, the agenda will be continuously updated on the website with the latest sessions & speakers. As we get closer to the event, also look out for our weekly updates which will also include the latest updates information and link to access the event.<\/p>\r\n<p><b>Can I access the sessions On Demand?<\/b><br>\r\nEvery session will be available after the event via the event lobby. We\u2019ll also send you a reminder about the On Demand sessions which will be sent to you after the event is over.<\/p>\r\n<p>--------------------------------<\/p>\r\n<p>RELATED RESOURCES TO READ BEFORE YOUR EVENT<\/p>\r\n<ul>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//executive-decisions//reports//cs-hub-mid-year-market-report-2022?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CS Hub Mid-Year Market Report 2022<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//ciso-strategies-for-proactive-threat-prevention?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">CISO strategies for proactive threat prevention<\/a><\/li>\r\n <li><a href=https://www.cshub.com/"https:////www.cshub.com//security-strategy//reports//how-to-strengthen-email-security-and-protection-against-advanced-ransomware-attacks?utm_source=eco-event-confirmation-email&utm_medium=email&utm_campaign=eco-event-confirmation-email\%22 target=\"_blank\">How to strengthen email security and protection against advanced ransomware attacks<\/a><\/li>\r\n<\/ul>","event_registration_srs_confirmation_email":null,"assets_from_cdn":true},"bant_disabled":0,"sponsorship_disclaimer":null,"sponsorship_disclaimer_text":null,"sponsorship_disclaimer_checkbox_disabled":null,"ext_treat_id":null,"recording_url":null,"file_attachment":null,"ingo_enabled":null,"ingo_activator_id":null,"ingo_autofiller_id":null,"ingo_amplifier_id":null,"ingo_authorizer_id":null,"restricted_content":1,"featured_events_embedded":[],"featured_content_embedded":[{"id":"611e5fba3120254e046dca72","name":"DeadRinger: Exposing Chinese threat actors targeting major telcos","description":"How threat actors attempted to steal high-profile assets and sensitive information on behalf of Chinese state interests were identified","file":"https:\/\/eco-cdn.iqpc.com\/eco\/files\/channel_content\/posts\/cybereason-deadringerT8BFHD2ccMWVLr9x20Tv3G4nPtetstZVy08aBaZ4.pdf","url":"\/threat-defense\/whitepapers\/deadringer-exposing-chinese-threat-actors-targeting-major-telcos"}],"featured_content_portal_embedded":null}" >