From Dark Reading – Chinese APT Uses VPN Bug to Exploit Worldwide OT Orgs
Companies critical to the aviation and aerospace supply chains didn’t patch a known CVE, providing opportunity for foreign espionage. Read More
Tag Winnti
From Cybersecurity Help – China-linked Winnti Group behind RevivalStone campaign targeting Japanese key industries
The attacks leveraged flaws in public-facing applications like IBM Lotus Domino to deliver various types of malware. Read More
From Dark Reading – China-Linked Threat Group Targets Japanese Orgs’ Servers
Winnti once used a variety of malware but is now focused on SQL vulnerabilities and obfuscation, updated encryption, and new evasion methods to gain access. Read More