Chinese organizations are being hit by Cobalt Strike malware from within China



Cybersecurity researchers from Securonix discovered a new threat campaign that included phishing, DLL sideloading, and Cobalt Strike beacons, all using Tencent’s infrastructure, and targeting Chinese entities. Tencent is the largest and most popular cloud service provider in China.

Apparently, the group (which has not been identified and doesn’t seem to resemble any known organization) was sending out phishing emails with attachments discussing “personnel lists” and “people who violated remote control software regulations”.

https://cdn.mos.cms.futurecdn.net/n2u3qWhkEbqXRzD4MJnbgU-1200-80.jpg



Source link

Latest articles

spot_imgspot_img

Related articles

spot_imgspot_img