13
China-linked LapDogs campaign drops backdoor with fake certs, targeting mainly Small Office/Home Office (SOHO) devices (securityscorecard.com)
submitted 6 days ago by [email protected] to c/[email protected]
0 comments fedilink hide all child comments

Archived

Full report (pdf)

Key Takeaways:

  • Over 1,000 actively infected nodes
  • Targets are highly localized in the United States and Southeast Asia, particularly Japan, South Korea, Hong Kong, and Taiwan
  • Victims in real estate, IT, networking, media and more
  • LapDogs leverages a custom backdoor named “ShortLeash,” which establishes a foothold on compromised devices and enables the hackers to act covertly
  • Small Office/Home Office (SOHO) devices are mainly targeted
  • Campaign growth is deliberate, beginning September 2023 and expanding with methodical tasking
  • LapDogs shares commonalities with some prolific China-Nexus ORB networks, most notably PolarEdge, while conclusively standing out as an independent ORB
no comments (yet)
sorted by: hot top new old
there doesn't seem to be anything here
this post was submitted on 24 Jun 2025
13 points (100.0% liked)

Cybersecurity

7665 readers
36 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago
MODERATORS
[email protected]
[email protected]