In addition to using CVE-2018-0171 and other Cisco bugs to break into telecom networks, the China-sponsored APT is also using stolen login credentials for initial access.
First seen on darkreading.com
Jump to article: www.darkreading.com/cyber-risk/cisco-salt-typhoon-exploitation-telecom
