A state-sponsored threat actor, CL-STA-0969, has been targeting telecommunications organizations in Southeast Asia in a sophisticated espionage campaign lasting 10 months. According to Palo Alto Networks Unit 42, the attackers focused on critical telecom infrastructure between February and November 2024. The campaign is notable for its high operational security (OPSEC) and the deployment of specialized tools like Cordscan to collect mobile device location data. While the group gained remote control over compromised networks, researchers found no evidence of data exfiltration. The actor shares significant overlaps with the China-nexus group Liminal Panda, indicating a calculated and persistent effort to maintain stealthy access to sensitive networks.
Neeraj Singh
Posted on • Originally published at neerajlovecyber.com
Hackers Plant Covert Malware in Major Telecom Networks
For further actions, you may consider blocking this person and/or reporting abuse
Top comments (1)
Hackers secretly installed malware in major telecom networks to spy on data and communications.