July 31, 2024 at 07:27AM Japanese organizations are targeted by a Chinese nation-state threat actor using malware like LODEINFO and NOOPDOOR to steal sensitive data, with Israeli cybersecurity company Cybereason tracking the campaign as Cuckoo Spear, related to APT10. The group uses spear-phishing emails and targets public-facing applications for data exfiltration, maintaining persistence for years. … Read more
May 23, 2024 at 07:22AM A Chinese threat group known as Unfading Sea Haze has been targeting military and government entities in the South China Sea for over six years, utilizing sophisticated tools and tactics including spear-phishing, backdoors, and commercially available remote monitoring and management tools. The group’s activities align with Beijing’s interests, indicating potential … Read more
April 30, 2024 at 01:33PM A new threat actor called Muddling Meerkat, linked to the Chinese government, has been scanning DNS networks for years, manipulating DNS mail server records using fake responses. It can control the Great Firewall of China and may be preparing for cyberattacks. Admins are advised to eliminate open resolvers and use … Read more