#63: Chinese Hacking Group Targets IoT Devices #shorts

A prominent Chinese hacking group has been identified for its extensive cyber espionage campaigns targeting small-office and home-office (SOHO) devices worldwide. Researchers from SecurityScorecard discovered over 1,000 compromised devices, predominantly Linux-based systems, which the group uses to establish a covert infrastructure called LapDogs. The campaign leverages the malware ShortLeash, a sophisticated backdoor that infiltrates devices through known vulnerabilities (N-Day exploits), disguising itself under faux certificates resembling official entities like the Los Angeles Police Department. Once installed, ShortLeash ensures persistence by replacing system services to run after reboots, facilitating long-term surveillance and data exfiltration. The attackers primarily focus on devices from major manufacturers such as ASUS, Cisco, and D-Link, with targeting concentrated in Asian and American regions.

This hacking operation employs small, automated infection batches, often infecting fewer than 60 devices per campaign, yet cumulatively establishing a significant network for espionage activities. Notably, the malware exemplifies China's strategic use of IoT vulnerabilities to gather intelligence, reportedly involving at least one operation linked to the Chinese-affiliated group UAT-5918. The campaign underscores the increasing risks associated with insecure IoT devices, especially in critical sectors, and highlights the need for robust security measures. Experts warn that this persistent, layered threat illustrates how nation-state groups exploit supply chain weaknesses and outdated IoT firmware to facilitate covert intelligence gathering on a global scale.

#shorts

Видео #63: Chinese Hacking Group Targets IoT Devices #shorts канала ByteEveryDay