Tag: china
-
US Firms Try DeepSeek as Silicon Valley AI Costs Rise
US firms are testing China’s DeepSeek as Silicon Valley AI costs rise, raising questions about savings, data residency, and risk. The post US Firms Try DeepSeek as Silicon Valley AI Costs Rise appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-us-firms-try-deepseek-ai-costs-rise/
-
China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africa
A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target European organizations in the U.K., Germany, Italy, and South Africa.These efforts have been complemented by a “rapid operational tempo” and a continually evolving malware arsenal comprising known families like ValleyRAT (aka Winos 4.0) and Atlas RAT (aka AtlasCross RAT), as…
-
Chinese spies are using LinkedIn to lure Westerners into sharing sensitive information
The advisory warns that Chinese spies are using public job search platforms to recruit people with access to non-public information. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/04/chinese-spies-are-using-linkedin-to-lure-westerners-into-sharing-sensitive-information/
-
Five Eyes warn Chinese spies are using job sites to recruit insiders
The alert warned that Chinese intelligence officers are posing as recruiters and consultants for front companies based outside China in order to target Five Eyes government and military personnel “and anyone with access to classified or privileged information.” First seen on therecord.media Jump to article: therecord.media/five-eyes-warns-chinese-spies-are-using-job-sites-to-recruit-insiders
-
Chinese-Speaking Actor TA4922 Widens Its Global Reach
Tags: chinaNewly named Chinese-speaking actor TA4922 expands from East Asia into Europe and Africa First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ta4922-global-expansion/
-
China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa
A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target European organizations in the U.K., Germany, Italy, and South Africa.These efforts have been complemented by a “rapid operational tempo” and a continually evolving malware arsenal comprising known families like ValleyRAT (aka Winos 4.0) and Atlas RAT (aka AtlasCross RAT), as…
-
Five Eyes Warns Chinese Spies Are Using Fake Job Ads to Target Military Staff
Five Eyes warns that Chinese spies are using fake job ads on LinkedIn, Indeed, and Upwork to target military staff and steal sensitive data. First seen on hackread.com Jump to article: hackread.com/five-eyes-chinese-spies-fake-job-ads-military-staff/
-
Proofpoint: TA4922 Deploys New RAT and Loader Arsenal
A rapidly evolving threat cluster tracked as TA4922, a Chinese-speaking cybercriminal actor deploying a diverse and expanding malware arsenal that now includes Atlas RAT, RomulusLoader, SilentRunLoader, and ValleyRAT. The group is notable for its high operational tempo, shifting tactics, and ability to blend custom malware with legitimate tools and cloud services, complicating detection efforts across…
-
China Using LinkedIn to Recruit Government Insiders
Five Eyes Agencies Document 5-Step Chinese Job Platform Spy Scheme. The Five Eyes intelligence agencies issued a rare joint bulletin warning that Chinese military intelligence is using LinkedIn, Indeed, and Upwork to recruit government and military insiders. The operation targets clearance holders, military personnel, academics and journalists. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/china-using-linkedin-to-recruit-government-insiders-a-31861
-
Chinese hackers use new Atlas RAT malware in European cyberattacks
A Chinese-speaking cybercrime group has expanded its targeting to the European space, deploying previously undocumented malware and the Atlas backdoor. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chinese-hackers-use-new-atlas-rat-malware-in-european-cyberattacks/
-
Tropical Blend: Cyber & Politics Ramp Up Across Latin America
China-linked espionage groups have attacked at least a dozen nations in the region, gathering information on maritime shipping, oil production, and other geopolitical interests. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/nation-state-cyber-activity-latin-america
-
China-Linked TA4922 Hackers Target UK, Europe With New SilentRunLoader Malware
Proofpoint says TA4922, a suspected China aligned cybercrime group, is targeting UK and European organisations with tax, payroll and benefits themed malware campaigns. First seen on hackread.com Jump to article: hackread.com/china-ta4922-hackers-uk-europe-silentrunloader-malware/
-
China Uses Dual-Method Cyberattack on Czech Orgs
China is stealing data from high-value targets via a sneaky, double-layer spear-phishing campaign that includes the Azureveil malware. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/china-uses-dual-method-attack-czech-taiwan-orgs
-
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
Tags: attack, china, cyber, email, espionage, finance, government, group, phishing, service, spear-phishing, technologyA new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent.According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial services sectors. The activity entails distributing spear-phishing emails containing ZIP attachments First seen on…
-
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
Tags: attack, china, cyber, email, espionage, finance, government, group, phishing, service, spear-phishing, technologyA new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent.According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial services sectors. The activity entails distributing spear-phishing emails containing ZIP attachments First seen on…
-
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
Tags: attack, china, cyber, email, espionage, finance, government, group, phishing, service, spear-phishing, technologyA new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent.According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial services sectors. The activity entails distributing spear-phishing emails containing ZIP attachments First seen on…
-
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
Tags: attack, china, cyber, email, espionage, finance, government, group, phishing, service, spear-phishing, technologyA new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent.According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial services sectors. The activity entails distributing spear-phishing emails containing ZIP attachments First seen on…
-
China-nahe APT-Gruppe Webworm nimmt europäische Behörden ins Visier – EchoCreep und GraphWorm verstecken Angriffsbefehle in Cloud-Diensten
First seen on security-insider.de Jump to article: www.security-insider.de/webworm-echocreep-graphworm-backdoor-discord-graph-api-europa-a-8bd6e43eba9a87a50c79849b64e1b607/
-
Advanced China-Nexus Group Strikes Southeast Asian Networks
A sophisticated cyber espionage campaign is currently striking enterprise operations across Southeast Asia. Specifically, a China-nexus group has First seen on securityonline.info Jump to article: securityonline.info/custom-linux-router-implant-malware/
-
Advanced China-Nexus Group Strikes Southeast Asian Networks
A sophisticated cyber espionage campaign is currently striking enterprise operations across Southeast Asia. Specifically, a China-nexus group has First seen on securityonline.info Jump to article: securityonline.info/custom-linux-router-implant-malware/
-
Advanced China-Nexus Group Strikes Southeast Asian Networks
A sophisticated cyber espionage campaign is currently striking enterprise operations across Southeast Asia. Specifically, a China-nexus group has First seen on securityonline.info Jump to article: securityonline.info/custom-linux-router-implant-malware/
-
Chinese Threat Actors Ditch Static Phishing Pages for Live Credential Interception
Almost all organizations impersonated by Chinese phishing platforms are non-Chinese entities, suggesting operators deliberately avoid domestic targets First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/chinese-phishing-live-credential/
-
Chinese phishing gangs grow into a force to be reckoned with
Chinese-language phishing-as-a-service (PhaaS) communities are expanding in an area historically dominated by Russian-speaking cybercriminal groups. The Google Threat … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/26/chinese-language-phishing-services/
-
China-Linked Hackers Hit SEA Edge Routers With Custom Linux Implant
China-linked hackers are conducting a stealthy infrastructure-centric espionage campaign across Southeast Asia by compromising Linux-based edge routers with a custom ELF implant and pairing it with a cracked Cobalt Strike Beacon on Windows systems for unified command-and-control over entire networks. The operation enables full visibility into, and manipulation of, downstream traffic while largely bypassing traditional…
-
Malicious PDF LNK Files Deploy Cobalt Strike in Operation Dragon Whistle
A newly uncovered cyber campaign dubbed “Operation Dragon Whistle” is targeting China’s education sector with highly tailored spear-phishing attacks that deploy Cobalt Strike beacons via deceptive PDF/LNK files. The attackers crafted emails that impersonate official university communications, urging students and faculty to review an important testing notice. The message includes a ZIP attachment named in…
-
New Telecom Espionage Campaign Tied to China
Researchers Trace Linux and Windows Toolsets to Suspected PRC Espionage Activity. Newly discovered malware tied to China-linked actors breached telecom providers across Asia and the Middle East, highlighting growing efforts to gain persistent access into interconnected communications infrastructure. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/new-telecom-espionage-campaign-tied-to-china-a-31763
-
China’s Webworm Uses Discord, Microsoft Graphs to Hack EU Governments
The advanced persistent threat group also relied on SOCKS proxies like SoftEther VPN, tunneling tools that act as a middleman between victim and attacker. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/chinas-webworm-discord-microsoft-graphs
-
China’s Webworm Uses Discord, Microsoft Graphs to Hack EU Govts.
The advanced persistent threat group also relied on SOCKS proxies like SoftEther VPN, tunneling tools that act as a middleman between victim and attacker. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/chinas-webworm-discord-microsoft-graphs
-
State Officials Urge Congress to Renew Cyber Grant Program
Officials Warn Local Governments Lack Resources to Counter Advanced Threats. State cybersecurity officials warned Congress that Chinese-linked intrusions and rapidly advancing artificial intelligence systems are overwhelming local defenses as states push lawmakers to expand long-term federal cyber grant funding and preserve federal coordination efforts. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/state-officials-urge-congress-to-renew-cyber-grant-program-a-31748
-
Lawmakers from both parties say CISA cuts have gone too far
Reps. Don Bacon, R-Neb., and James Walkinshaw, D-Va., found rare bipartisan agreement that the agency tasked with defending civilian networks has been diminished at a moment when threats from China and others are growing. First seen on cyberscoop.com Jump to article: cyberscoop.com/lawmakers-bipartisan-cisa-budget-cuts/