LapDogs Unleashed: China’s Cyber Espionage Fetches Trouble with Compromised Devices

China-nexus actors are using Operational Relay Boxes (ORBs) in a cyber-espionage campaign dubbed “LapDogs,” targeting the US and Asia. With over 1000 compromised devices, they’re barking up the wrong tree while using fake LAPD certificates to spoof investigators. Who knew routers could have a side gig in international espionage?

3P
Published: June 23, 2025 9:37 amAdded: June 23, 2025 at 3:13 amAssembled by: The Editor
Pro Dashboard

Hot Take:

In a plot twist worthy of a cyber-thriller, China-nexus actors are using the LapDogs botnet to wag their digital tails at unsuspecting victims in the US and Asia. Who knew routers could be so sneaky? With a backdoor called “ShortLeash” and fake LAPD certificates, it’s like a cyber-crime caper with a dash of Hollywood flair. Somebody call CSI: Cyber!

Key Points:

  • The LapDogs botnet includes over 1000 compromised SOHO devices.
  • ShortLeash backdoor uses spoofed LAPD TLS certificates for obfuscation.
  • Targets mainly in the US, Japan, South Korea, Hong Kong, and Taiwan.
  • Attributed to China-nexus Advanced Persistent Threats.
  • Similar to other ORB networks like PolarEdge and Volt Typhoon.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?