China-linked UAT-7290 Targets Telcos in Cyberespionage Campaign

China-linked UAT-7290 Targets Telcos in Cyberespionage Campaign

First seen 9 Jan 2026, 20:34 UTC Scworld 53% similarity 95.9

Article Content

Browse articles
ThreatCluster

Telecommunications providers in South Asia and Southeastern Europe have been targeted by the China-linked threat operation UAT-7290 in a series of cyberespionage attacks. The intrusions involved extensive reconnaissance and the deployment of a Linux-based malware suite, including the RushDrop dropper, ChronosRAT, and DriveSwitch malware, which facilitates the delivery of additional malicious payloads.

ThreatCluster AI

Community

Browse all →