< BACK TO NEWS
importantSYS.SOURCE: The Hacker News2026-07-08T14:34:33+05:30

China-Linked APT UAT- Expands ORB Network Using New LONGLEASH Malware

#APT#Malware#Network Security#Cyber Espionage#Router Vulnerabilities

A China-linked APT group, UAT-, is expanding its ORB network through custom malware like LONGLEASH, exploiting router vulnerabilities to establish persistent access. The group collaborates with other threat actors, employing advanced techniques to maintain control over compromised devices.

A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into internet-facing networking devices.

According to findings from Cisco Talos, UAT-7810 is an advanced persistent threat (APT) actor that's responsible for maintaining and proliferating LapDogs, an ORB network that first came to light in June 2025.

Read original article

*** END OF TRANSMISSION ***

> KEVIN WEIL JOINS STOKE SPACE BOARD AS AI EXPERT TO SUPPORT REUSABLE ROCKET DEVELOPMENT> GITHUB VERIFIED COMMITS VULNERABILITY ALLOWS HASH MALLEABILITY WITHOUT BREAKING SIGNATURES> APPLE COMMITS OVER $ BILLION TO BROADCOM FOR U.S.-BASED CHIP PRODUCTION EXPANSION> SHIFT IN ATO ATTACKS: VERIFICATION STEPS BECOMING PRIMARY TARGET IN > GITHUB COPILOT BYPASSED VIA WORKFLOW-LEVEL JAILBREAK TO GENERATE HARMFUL CODE> HUBSPOT ADDRESSES PREVIOUS ERROR AND IMPLEMENTS CORRECTIVE MEASURES> EUROPEAN ORGANIZATIONS BANNING PERSONAL MESSAGING APPS FOR WORK COMPLIANCE AND DATA SECURITY> CHINA-LINKED APT UAT- EXPANDS ORB NETWORK USING NEW LONGLEASH MALWARE> ANALYSIS OF OBFUSCATED BASH SCRIPT ON UNIQLO T-SHIRT FOR AKAMAI'S PEACE FOR ALL CAMPAIGN> GEOSQL: ENHANCING CLAUDE/CODEX WITH GEOSPATIAL DATA ANALYTICS CAPABILITIES> KEVIN WEIL JOINS STOKE SPACE BOARD AS AI EXPERT TO SUPPORT REUSABLE ROCKET DEVELOPMENT> GITHUB VERIFIED COMMITS VULNERABILITY ALLOWS HASH MALLEABILITY WITHOUT BREAKING SIGNATURES> APPLE COMMITS OVER $ BILLION TO BROADCOM FOR U.S.-BASED CHIP PRODUCTION EXPANSION> SHIFT IN ATO ATTACKS: VERIFICATION STEPS BECOMING PRIMARY TARGET IN > GITHUB COPILOT BYPASSED VIA WORKFLOW-LEVEL JAILBREAK TO GENERATE HARMFUL CODE> HUBSPOT ADDRESSES PREVIOUS ERROR AND IMPLEMENTS CORRECTIVE MEASURES> EUROPEAN ORGANIZATIONS BANNING PERSONAL MESSAGING APPS FOR WORK COMPLIANCE AND DATA SECURITY> CHINA-LINKED APT UAT- EXPANDS ORB NETWORK USING NEW LONGLEASH MALWARE> ANALYSIS OF OBFUSCATED BASH SCRIPT ON UNIQLO T-SHIRT FOR AKAMAI'S PEACE FOR ALL CAMPAIGN> GEOSQL: ENHANCING CLAUDE/CODEX WITH GEOSPATIAL DATA ANALYTICS CAPABILITIES