URL has been copied successfully!
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API


Tags: , , , , , , ,

Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors that employ Discord and Microsoft Graph API for command-and-control (C2 or C&C) communications.Webworm, first publicly documented by Broadcom-owned Symantec in September 2022, is assessed to be active since at least 2022, targeting government agencies

First seen on thehackernews.com

Jump to article: thehackernews.com/2026/05/webworm-deploys-echocreep-and-graphworm.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. The 2024 cyberwar playbook: Tricks used by nation-state actors
  2. Top 10 Cybersecurity Predictions for 2026
  3. 12 ways attackers abuse cloud services to hack your enterprise
  4. 6 ways attackers abuse AI services to hack your business