The Ballista botnet is actively exploiting a high-severity remote code execution (RCE) vulnerability—CVE-2023-1389—to infect ...

Fewer than 10 known victims, but Mandiant suspects others compromised, too Chinese spies have for months exploited old ...

The targeted devices have reached end-of-life status and need to be upgraded, as the company has issued in a security ...

Chinese hackers are deploying custom backdoors on Juniper Networks Junos OS MX routers that have reached end-of-life (EoL) ...

A new botnet campaign is exploiting a high-severity security flaw in unpatched TP-Link routers and has already spread to more ...

Mandiant revealed that Chinese espionage actor UNC3886 has deployed modified versions of the TinyShell backdoor across ...

The threat group UNC3886 uses stolen credentials and custom malware implants to compromise end-of-life routers from Juniper ...

Use precise geolocation data and actively scan device characteristics for identification. This is done to store and access ...

UNC3886 exploits Juniper routers with six TinyShell-based backdoors, evading detection and maintaining persistence.

Chinese cyber spies target end-of-life Juniper routers used by internet service providers and large companies, Google Mandiant warns.

Mandiant, Google Cloud Security’s threat intelligence company, has exposed a sophisticated cyber espionage campaign by the China-linked hacking group UNC3886. The group has been found infiltrating ...