Targeting of Southeast Asian telecommunication companies

Date of report

August 2021

Affiliations

Soft Cell, GALLIUM, Deadringer

In a series of attacks starting in 2017, Chinese threat actors are believed to have compromised telecommunication firms across Southeast Asia. The breaches were designed to extract data from the companies' servers and were likely used to launch more targeted spear-phishing attacks.

Suspected victims

Southeast Asian telecommunication companies and their customers.

Suspected state sponsor

China

Type of incident

Espionage

Target category

Civil society
Private sector
Government

Suspected state sponsor response

Denial

DeadRinger: Exposing Chinese Threat Actors Targeting Major Telcos
Chinese hackers targeted telecoms firms in Southeast Asia, report says
Five Southeast Asian telcos hacked by three different Chinese espionage groups

Cyber Operations Tracker

CFR.org

Topics

Regions

Explainers

Research & Analysis

Communities

Events