Researchers have discovered that a threat group responsible for sophisticated cyberespionage assaults targeting US utilities is actually made up of three factions.
Each threat actor has their own set of tools and targets that have been operating globally since 2018, according to researchers. The threat group TA410, which uses the sophisticated FlowCloud RAT, is actually made up of three subgroups, each with its own set of tools and targets.
TA410 is a cyberespionage umbrella group that is closely associated to APT10, a Chinese Ministry of State Security-affiliated organisation. According to a report published this week by researchers at security firm ESET, the gang is targeting not only U.S. energy companies, but also diplomatic organisations in the Middle East and Africa.