A concerning wave of cyber espionage has been uncovered, specifically targeting SOHO (Small Office/Home Office) devices. Security researchers have identified a sustained campaign attributed to a China-linked threat group, which has successfully compromised over 1,000 devices worldwide.
These attackers are exploiting known vulnerabilities in routers, network attached storage (NAS), and other internet-connected hardware commonly found in small businesses and home environments. The choice of SOHO devices is strategic; they are often less protected than enterprise infrastructure, providing a soft underbelly for gaining initial access or establishing persistent footholds for espionage. The primary goal appears to be the collection of sensitive data and network surveillance.
This campaign underscores the critical importance of securing even the smallest network points. Users and small organizations must prioritize firmware updates, strong, unique passwords, and vigilant network security practices to defend against sophisticated threat actors leveraging these overlooked entry points for malicious purposes. Protecting these foundational devices is essential to overall cybersecurity.
Source: https://securityaffairs.com/179406/malware/lapdogs-china-nexus-hackers-hijack-1000-soho-devices-for-espionage.html
