A cyber-espionage campaign was found targeting the Vietnamese military and government, as well as other sectors and some entities in Thailand and Central Asia. The campaign featured sophisticated techniques, as well as a new remote-access trojan (RAT) and spyware. Even with a lack of complete details, researchers managed to link the tactics, techniques, and procedures (TTPs) to a threat collective associated with the People’s Republic of China (PRC), and attributed it with low confidence to the “Cycldek” group. The campaign highlights the increasing technical sophistication of PRC-linked advanced persistent threat (APT) groups, problems with obfuscation and attribution, and the need to be aware of strategic and operational developments of these groups.

×
Want these
Threat Intelligence reports sent straight to your inbox?
Subscribe below!
Thank you!
Error - something went wrong!
Most Recent Flipbooks
Weekly Intelligence Summary 21 October
Main story: Ransom Cartel and REvil: Partners in cybercrime?
Weekly Intelligence Summary 14 Oct
Main story: Hacktivists fan flames of Iranian anti-regime protests
Weekly Intelligence Summary 07 Oct
Main story: ProxyNotShell spells déjà vu for MS Exchange Server defenders
Weekly Intelligence Summary 30 Sept
Main story: Rogue ex-developer leaks LockBit 3.0 builder
Weekly Intelligence Summary 23 Sept
Main story: Uber compromised by Lapsus$'s resurgence
Weekly Intelligence Summary 16 Sept
Main story: Cyber attacks shock the Italian energy sector
Weekly Intelligence Summary 09 Sept
Main story: Back to school for students and ransomware groups