China-Based Red Lamassu Targets Telecoms Across Asia

PwC Threat Intelligence documents a sustained Red Lamassu (aka Calypso) cyber-espionage campaign targeting regional telecommunications in Kazakhstan, Afghanistan, and India; investigators found an open directory containing both Linux samples and a Windows backdoor named JFMBackdoor (delivered via DLL side-loading) capable of remote shell access, file operations, proxying, screenshot capture and self-removal, with forensic ties to a compromise of an Afghan telecom domain controller.