China-Based Hackers Target Southeast Asia With USB-Based Malware
All images are copyrighted.
In terms of attack strategy, following initial infection via USB devices, the threat actor leveraged legitimately signed binaries to side-load malware, including three new families Mandiant named Mistcloak, Darkdew and Bluehaze. Cyber espionage activity relying on USB devices as an initial infection vector has been spotted targeting public and private entities in Southeast Asia and the Philippines in particular. According to the technical write-up, UNC4191 operations have affected several entities in Southeast Asia but also in the US, Europe and Asia Pacific Japan.
Source read time: 1 min - infosecurity-magazine.com
Also offered in: Nederlands