-
China-Aligned APT Hackers Exploit Windows Group Policy to Deploy Malware
19 Dec 2025 09:38 GMT
… has unveiled a new China-aligned threat actor dubbed … involves the abuse of Windows Group Policy for lateral … task that executes a legitimate Windows binary, UevAppMonitor.exe, … and initiates communication with Microsoft OneDrive using RSA-encrypted metadata …
-
China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware
18 Dec 2025 22:58 GMT
… Security
A previously undocumented China-aligned threat cluster dubbed … and permissions on Windows machines. According to Microsoft, Group Policy … history from Google Chrome, Microsoft Edge, and Mozilla … shared among multiple China-aligned threat groups."
-
New China-linked hacker group spies on governments in Southeast Asia, Japan
18 Dec 2025 21:20 GMT
… apart from other known China-linked threat actors is … Group Policy, a legitimate Windows feature normally used by system … history from Google Chrome, Microsoft Edge and Mozilla Firefox. … a commercial service to multiple China-aligned actors, the researchers …
-
Group Policy abuse reveals China-aligned espionage group targeting governments
18 Dec 2025 10:41 GMT
… previously undocumented China-aligned advanced persistent threat group that uses Windows Group … browsing history from Google Chrome, Microsoft Edge, and Mozilla Firefox. The … targets browser data stored in Microsoft Edge and Google Chrome, expanding …
-
New Chinese group LongNosedGoblin deploys cyberespionage tools in Southeast Asia and Japan, ESET Research discovers
18 Dec 2025 10:00 GMT
… is a newly discovered China-aligned Advanced Persistent Threat … being shared by multiple China-aligned threat actors.
BRATISLAVA … settings and permissions on Windows machines, typically used with … history from Google Chrome, Microsoft Edge, and Mozilla Firefox, …
-
Chinese hackers fake Teams downloads in false flag ploy
18 Dec 2025 09:09 GMT
… with operations in China as well as domestic Chinese targets.
ReliaQuest assesses … exe" that impersonates the Microsoft Teams installation process.
The executable … organisations with limited endpoint detection, Windows event logging or PowerShell logging …
-
Chinese Hackers Turn Compromised Servers Into ShadowPad Nodes
18 Dec 2025 01:18 GMT
A sophisticated Chinese threat actor tracked as Ink … “Microsoft-IIS/10.0” to blend seamlessly into standard Windows Server …
-
China-Linked Ink Dragon Hacks Governments Using ShadowPad and FINALDRAFT Malware
17 Dec 2025 17:54 GMT
… Earth Alux, and REF7707. The China-aligned hacking group is assessed … s capable of infecting both Windows and Linux systems. In … in memory
CDBLoader, which uses Microsoft Console Debugger ("cdb.exe … that abuses Outlook and the Microsoft Graph API for C2
…
-
Microsoft to Retire Vulnerable RC4 Cipher in Active Directory by 2026
16 Dec 2025 15:34 GMT
… 4, was integrated into Windows when Microsoft launched Active Directory in 2000 … those linked to Russian and Chinese intelligence.
The cipher’s problems … -in-the-middle attacks on Windows domains.
Microsoft’s announcement, detailed in …
-
Cybersecurity News Weekly Newsletter – Windows, Chrome, and Apple 0-days, Kali Linux 2025.4, and MITRE Top 25
14 Dec 2025 16:35 GMT
… /
OceanLotus Targets China’s Xinchuang Ecosystem via … focused surveillance campaign against China’s “Xinchuang” IT stack … /
Cisco‑Trained Chinese Hackers Turn Tools Against … Microsoft’s final 2025 Patch Tuesday fixes 56 vulnerabilities across Windows …
About
© 1995-2025