Cybereason recently discovered several previously unidentified attack campaigns targeting the telecoms industry across Southeast Asia that are assessed to be the work of multiple Chinese APT groups. The attacks are detailed in the threat intelligence report titled DeadRinger: Exposing Chinese Threat Actors Targeting Major Telcos.
Similar to the recent SolarWinds and Kaseya attacks, the threat actors first compromised third-party service providers: telecommunications companies. But instead of using them to deliver malware through a supply chain attack, the intent was to conduct espionage by surveilling their customers' confidential communications.
Nate Nelson talks to Assaf Dahan, Senior Director and Head of Threat Research with the Cybereason Nocturnus Team about the DeadRinger report and the implications for third-party security issues - check it out...