• Google announced on Wednesday that it has disrupted a significant China-linked cyberespionage campaign targeting telecoms and government organizations worldwide • The threat actor, tracked by Google’s Threat Intelligence Group (GTIG) and Mandiant asUNC2814, has been active since at least 2017 • It has been described as one of the most far-reaching and impactful campaigns encountered in recent years • According to Google, this elusive threat actor has targeted at least 53 organizations across 42 countries in the Americas, Asia, and Africa • There is suspicion that the cyberspies may have targeted at least 20 other countries • “The attacker was using API calls to communicate with SaaS apps as command-and-control (C2) infrastructure to disguise their malicious traffic as benign, a common tactic used by threat actors when attempting to improve the stealth of their intrusions,” the tech giant explained

Article Summaries:

  • Google announced on Wednesday that it has disrupted a significant China-linked cyberespionage campaign targeting telecoms and government organizations worldwide. The threat actor, tracked by Google’s Threat Intelligence Group (GTIG) and Mandiant as UNC2814, has been active since at least 2017. It has been described as one of the most far-reaching and impactful campaigns encountered in recent years. According to Google, this elusive threat actor has targeted at least 53 organizations across 42 countries in the Americas, Asia, and Africa. There is suspicion that the cyberspies may have targeted

Sources: