A network of over 1,000 compromised SOHO devices, dubbed LapDogs, has been identified as part of a Chinese cyber espionage operation targeting multiple regions. The campaign utilizes a custom backdoor called ShortLeash to infect devices and support various stages of cyberattacks. #LapDogs #ShortLeash
Keypoints
- The LapDogs network primarily targets SOHO devices in the US, Southeast Asia, and other regions.
- Infections are mainly achieved through exploiting known security vulnerabilities in IoT and network devices.
- ShortLeash backdoor creates a fake web server and impersonates the Los Angeles Police Department in TLS certificates.
- The campaign appears to operate in batches, with each batch infecting up to 60 devices.
- LapDogs shares similarities with the PolarEdge cluster but remains a distinct threat with unique infection methods.
Read More: https://thehackernews.com/2025/06/over-1000-soho-devices-hacked-in-china.html