cybersecurity

4540 readers

6 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

shellsharks@infosec.pub

tweedge@infosec.pub

China-linked LapDogs campaign drops backdoor with fake certs, targeting mainly Small Office/Home Office (SOHO) devices (securityscorecard.com)

submitted 1 week ago by Hotznplotzn@lemmy.sdf.org to c/cybersecurity@infosec.pub

0 comments fedilink hide all child comments

cross-posted from: https://lemmy.sdf.org/post/37319322

Archived

Full report (pdf)

Key Takeaways:

Over 1,000 actively infected nodes

Targets are highly localized in the United States and Southeast Asia, particularly Japan, South Korea, Hong Kong, and Taiwan

Victims in real estate, IT, networking, media and more

LapDogs leverages a custom backdoor named “ShortLeash,” which establishes a foothold on compromised devices and enables the hackers to act covertly

Small Office/Home Office (SOHO) devices are mainly targeted

Campaign growth is deliberate, beginning September 2023 and expanding with methodical tasking

LapDogs shares commonalities with some prolific China-Nexus ORB networks, most notably PolarEdge, while conclusively standing out as an independent ORB

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here