Security News > 2022 > June > China-linked APT Flew Under Radar for Decade

China-linked APT Flew Under Radar for Decade
2022-06-17 13:34

Researchers have identified a small yet potent China-linked APT that has flown under the radar for nearly a decade running campaigns against government, education and telecommunication organizations in Southeast Asia and Australia.

Researchers from SentinelLabs said the APT, which they dubbed Aoqin Dragon, has been operating since at least 2013.

"Aoqin Dragon seeks initial access primarily through document exploits and the use of fake removable devices," researchers wrote.

Part of what's helped Aoqin Dragon stay under the radar for so long is that they've evolved.

Over time, the researchers said, the APT began slowly working the fake removable disc technique.

Further evidence of China influence includes a debug log found by researchers that contains simplified Chinese characters.


News URL

https://threatpost.com/apt-flew-under-radar-decade/179995/