PROBABLYPWNED
Home/Tag/China

China

38 articles tagged with "China"

Phantom Taurus: Chinese APT Deploys NET-STAR Malware Suite
Threat Intelligence4 min read

Phantom Taurus: Chinese APT Deploys NET-STAR Malware Suite

Unit 42 exposes Phantom Taurus, a China-aligned APT targeting governments and telecoms across Africa, the Middle East, and Asia with custom NET-STAR backdoors for IIS servers.

Threat Intel DeskJun 6, 2026
Silk Typhoon Hacker Extradited to U.S. for COVID Vaccine Theft
Threat Intelligence4 min read

Silk Typhoon Hacker Extradited to U.S. for COVID Vaccine Theft

Chinese national Xu Zewei faces nine federal counts after extradition from Italy for alleged role in Silk Typhoon attacks stealing COVID-19 vaccine research from U.S. universities and research institutions.

Threat Intel DeskApr 28, 2026
Storm-1175 Deploys Medusa Ransomware Within 24 Hours of Access
Threat Intelligence4 min read

Storm-1175 Deploys Medusa Ransomware Within 24 Hours of Access

Microsoft links China-based Storm-1175 to high-velocity Medusa ransomware attacks exploiting zero-day vulnerabilities. Healthcare, education, and finance sectors hit across Australia, UK, and US.

Threat Intel DeskApr 7, 2026
Phantom Taurus Deploys Net-Star Backdoors Across Africa
Threat Intelligence3 min read

Phantom Taurus Deploys Net-Star Backdoors Across Africa

Unit 42 exposes Phantom Taurus, a Chinese APT targeting embassies and foreign ministries with fileless NET-STAR malware. The group resurfaces within hours after discovery.

Threat Intel DeskApr 4, 2026
UnsolicitedBooker APT Targets Central Asian Telecoms
Threat Intelligence4 min read

UnsolicitedBooker APT Targets Central Asian Telecoms

China-aligned threat group deploys LuciDoor and MarsSnake backdoors against telecom providers in Kyrgyzstan and Tajikistan, expanding from prior Saudi operations.

Threat Intel DeskMar 1, 2026
Dell Zero-Day Exploited by Chinese Hackers Since 2024
Threat Intelligence5 min read

Dell Zero-Day Exploited by Chinese Hackers Since 2024

Chinese threat group UNC6201 exploited a critical hardcoded credential flaw (CVE-2026-22769) in Dell RecoverPoint for 18 months before disclosure. Patch now.

Threat Intel DeskFeb 18, 2026
China's UNC3886 Breached All Four Singapore Telcos
Threat Intelligence3 min read

China's UNC3886 Breached All Four Singapore Telcos

Singapore confirms China-linked APT compromised M1, Singtel, StarHub, and SIMBA using zero-day exploits and rootkits. 11-month Operation Cyber Guardian response disclosed.

Threat Intel DeskFeb 14, 2026