China-Linked Threat Group Expands Attacks on Southeast Asia’s Critical Infrastructure
ID: 97cf6181-8275-59f7-9974-73081f78883d
STIX ID: report--97cf6181-8275-59f7-9974-73081f78883d
Feed Name: Security Boulevard
Threat Score
Palo Alto Networks’ Unit 42 identifies a China-linked threat actor (CL-STA-1062) shifting from web-hosting attacks to targeted intrusions against electricity, water, government and military organizations in Southeast Asia, deploying a novel backdoor named TinyRCT with anti-analysis and self-destruct features and demonstrating lateral movement and persistence techniques.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
