Symantec has published two blog posts warning organizations about advanced persistent threat (APT) actors targeting the Asian materials industry.
The most notable hacking group is Winnti, also known as APT41, Barium, Blackfly, Bronze Atlas, Double Dragon, Wicked Panda, and Wicked Spider. This Chinese state-sponsored threat group has been active since at least 2007, engaging in cyberespionage and financially motivated attacks. The recently observed operation, which was conducted late in 2022 and early in 2023, targeted two subsidiaries of an Asian conglomerate operating in the materials and composites sector, likely for intellectual property theft.
In contrast, the modified Lilith RAT can terminate and restart processes, execute remote commands and PowerShell scripts, as well as terminate and uninstall itself.
Read More: Two Hacking Groups Seen Targeting Materials Sector in Asia
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.