logo

China-Linked Threat Group Expands Attacks on Southeast Asia’s Critical Infrastructure

ID: 97cf6181-8275-59f7-9974-73081f78883d

STIX ID: report--97cf6181-8275-59f7-9974-73081f78883d

Feed Name: Security Boulevard

Threat Score
85/100

Date Published: 2026-07-05

Date Updated: 2026-07-05

Author: John Joseph Javier

...
...

Palo Alto Networks’ Unit 42 identifies a China-linked threat actor (CL-STA-1062) shifting from web-hosting attacks to targeted intrusions against electricity, water, government and military organizations in Southeast Asia, deploying a novel backdoor named TinyRCT with anti-analysis and self-destruct features and demonstrating lateral movement and persistence techniques.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.