‘Sandman’ hackers backdoor telcos with new LuaDream malware

Cybersecurity firm SentinelLabs discovered a new threat actor dubbed “Sandman” that uses info-stealing malware “LuaDream.” Sandman targets telecommunication service providers in the Middle East, Western Europe, and South Asia using stolen administrative credentials. The malware uses a sophisticated process to evade detection, its development is ongoing, and it consists of 34 components. However, the origin of the threat actor remains unknown.