Scworld
China-linked UAT-7290 Targets Telcos in Cyberespionage Campaign
First seen 9 Jan 2026, 20:34 UTC
•
•53% similarity
•95.9
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
Telecommunications providers in South Asia and Southeastern Europe have been targeted by the China-linked threat operation UAT-7290 in a series of cyberespionage attacks. The intrusions involved extensive reconnaissance and the deployment of a Linux-based malware suite, including the RushDrop dropper, ChronosRAT, and DriveSwitch malware, which facilitates the delivery of additional malicious payloads.
ThreatCluster AI