Summary: A Chinese espionage group known as UNC3886 has been specifically targeting Juniper Networks’ routers, deploying custom malware to exploit vulnerabilities. Their sophisticated tactics focus on maintaining long-term access to networks, primarily within defense, technology, and telecommunications sectors in the US and Asia. Mandiant’s analysis indicates that organizations using end-of-life hardware should upgrade to mitigate risks associated with these advanced threats.
Affected: Juniper Networks
Keypoints :
- UNC3886 deployed custom backdoors on Junos OS routers, showcasing advanced system knowledge.
- The group has been tracking target systems since 2022, employing zero-day exploits against network devices.
- Organizations using end-of-life Juniper MX routers are advised to upgrade to counter these threats.
Source: https://therecord.media/china-continues-attacks-routers-juniper