Chinese APT Actors Targeting EU
Chinese state-sponsored threat groups have been observed targeting businesses and governments in the European Union. This was claimed by ENISA and CERT-EU. Earlier last week, a joint advisory was published…
Vixen Panda targets Iranian Government
The Chinese APT group called Vixen Panda has been linked to a new series of attacks targeting the Iranian government during Q3 and Q4 of 2022. Vixen Panda is also…
Billbug APT ! Chinese State Sponsered
Billbug, a chinese state sponsored-hacking group has breached government and defence agencies throughout Asia, as part of a major campaign since March. The gang infiltrated a digital certificate authority, which…
Red Landon Cyber Espionage Campaign
A cyberespionage group from china dubbed TA423 (aka Red Landon or APT 40) has been seen targetting Australian officials with reconnaissance malware called Scanbox to steal details about the victims…
DriftingCloud APT Exploits Sophos Vulnerability
A sophisticated Chinese APT caught exploiting a Sophos firewall zero-day to plant backdoors and launch MiTM attacks. The Sophos firewall vulnerability tracked as CVE-2022-1040 was patched in March this year…
Aoqin Dragon – Chinese APT lures with Pornographs
Aoqin Dragon, a Chinese-linked advanced persistent threat (APT) has been uncovered that primarily targeting organizations in Southeast Asia and Australia, including government, education, and telecommunication organizations. According to researchers, Aoqin…
LuoYu employs Man-on-the-side attack to plant backdoor
A sophisticated Chinese APT actor dubbed LuoYu has been observed using a malicious Windows tool called WinDealer that allows the actor to modify network traffic in-transit to insert malicious payloads LuoYu…
Chinese APT exploits Follina
China-backed hackers are exploiting an unpatched Microsoft Office zero-day vulnerability, known as “Follina”, to execute malicious code remotely on Windows systems. Microsoft has warned that the flaw could enable threat…