Threat Advisories

Attackers target Telecommunications sector to gain network access

December 8, 2022

Threat Level

Red

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

To gain initial access, the adversary used social engineering to impersonate IT, staff, using phone calls, SMS, and/or Telegram. When the adversary gains access to the target environment, it performs constant activity within that environment.

Recent Lazarus campaign leveraged Crypto App to spread AppleJeus malware

Buffer Overflow vulnerability in FreeBSD