#Cambodia – Xynik

DPRK’s APT37 Targets Cambodia With Khmer, ‘VeilShell’ Backdoor

October 3, 2024 by Xynik

October 3, 2024 at 09:03PM APT37, a North Korean state-sponsored threat actor, has targeted Cambodian organizations with a new campaign called “Shrouded#Sleep.” Through spreading malicious emails related to Cambodian affairs in the Khmer language, APT37 introduces a backdoor called “VeilShell” disguised as shortcut files in an infection routine. This campaign demonstrates sophisticated persistence and stealth … Read more

Chinese Hackers Launch Covert Espionage Attacks on 24 Cambodian Organizations

November 13, 2023 by Xynik

November 13, 2023 at 01:06AM Chinese hacking groups have been found targeting 24 Cambodian government organizations in a long-term espionage campaign. The cyber activity is believed to align with China’s geopolitical goals and involves leveraging strong relations with Cambodia to expand naval operations in the region. The groups have been using fake cloud backup and … Read more