China's 'FamousSparrow' APT Nests in South Caucasus Energy Firm

Bitdefender researchers reported that the China-linked APT FamousSparrow conducted a targeted campaign against an Azerbaijani oil-and-gas company between late December and February, leveraging an unpatched Microsoft Exchange server for initial access and a novel two-stage DLL sideloading method to deploy a modified Deed RAT; operational technology networks were not impacted, but the activity signals expanding Chinese APT interest in the South Caucasus and highlights technique sharing across groups.