#apt41 — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #apt41, aggregated by home.social.
-
📢 SHADOW-EARTH-053 : campagne de cyberespionnage alignée Chine ciblant gouvernements et défense en Asie
📝 ## 🔍 ContextePublié le 30 avril 2026 par Trend Micro (Daniel Lunghi, Lucas Silva), cet article p...
📖 cyberveille : https://cyberveille.ch/posts/2026-05-06-shadow-earth-053-campagne-de-cyberespionnage-alignee-chine-ciblant-gouvernements-et-defense-en-asie/
🌐 source : https://www.trendmicro.com/en_us/research/26/d/inside-shadow-earth-053.html
#APT41 #AnyDesk #Cyberveille -
📢 Shadow-Earth-053 : nouveau groupe espion chinois infiltre des réseaux critiques en Pologne et en Asie
📝 ## 🌐 ContexteSource : The Register (exclusivité), publié le 30 avril 2026.
📖 cyberveille : https://cyberveille.ch/posts/2026-05-04-shadow-earth-053-nouveau-groupe-espion-chinois-infiltre-des-reseaux-critiques-en-pologne-et-en-asie/
🌐 source : https://www.theregister.com/2026/04/30/chinese_spies_lurking_networks/
#APT_chinois #APT41 #Cyberveille -
#CheckPoint Research has profiled #SilverDragon, a Chinese-aligned group linked to #APT41 that targeted government and enterprise networks across Southeast Asia and Europe. Recent operations used the #GearDoor #backdoor with SSHcmd and SilverScreen, enabling remote access, covert screen capture, and stealthy control after #phishing and server exploitation.
-
#CheckPoint Research has profiled #SilverDragon, a Chinese-aligned group linked to #APT41 that targeted government and enterprise networks across Southeast Asia and Europe. Recent operations used the #GearDoor #backdoor with SSHcmd and SilverScreen, enabling remote access, covert screen capture, and stealthy control after #phishing and server exploitation.
-
#CheckPoint Research has profiled #SilverDragon, a Chinese-aligned group linked to #APT41 that targeted government and enterprise networks across Southeast Asia and Europe. Recent operations used the #GearDoor #backdoor with SSHcmd and SilverScreen, enabling remote access, covert screen capture, and stealthy control after #phishing and server exploitation.
-
#CheckPoint Research has profiled #SilverDragon, a Chinese-aligned group linked to #APT41 that targeted government and enterprise networks across Southeast Asia and Europe. Recent operations used the #GearDoor #backdoor with SSHcmd and SilverScreen, enabling remote access, covert screen capture, and stealthy control after #phishing and server exploitation.
-
#CheckPoint Research has profiled #SilverDragon, a Chinese-aligned group linked to #APT41 that targeted government and enterprise networks across Southeast Asia and Europe. Recent operations used the #GearDoor #backdoor with SSHcmd and SilverScreen, enabling remote access, covert screen capture, and stealthy control after #phishing and server exploitation.
-
#SilverDragon est 1 opération d’ #espionnage informatique suivie par plusieurs équipes de threat intelligence.Les chercheurs y voient une attribution à #APT41 avec 1 outillage soigné, des phases discrètes de reconnaissance et 1 intérêt marqué pour les réseaux gouvernementaux
-
#SilverDragon est 1 opération d’ #espionnage informatique suivie par plusieurs équipes de threat intelligence.Les chercheurs y voient une attribution à #APT41 avec 1 outillage soigné, des phases discrètes de reconnaissance et 1 intérêt marqué pour les réseaux gouvernementaux
-
#SilverDragon est 1 opération d’ #espionnage informatique suivie par plusieurs équipes de threat intelligence.Les chercheurs y voient une attribution à #APT41 avec 1 outillage soigné, des phases discrètes de reconnaissance et 1 intérêt marqué pour les réseaux gouvernementaux
-
#SilverDragon est 1 opération d’ #espionnage informatique suivie par plusieurs équipes de threat intelligence.Les chercheurs y voient une attribution à #APT41 avec 1 outillage soigné, des phases discrètes de reconnaissance et 1 intérêt marqué pour les réseaux gouvernementaux
-
#SilverDragon est 1 opération d’ #espionnage informatique suivie par plusieurs équipes de threat intelligence.Les chercheurs y voient une attribution à #APT41 avec 1 outillage soigné, des phases discrètes de reconnaissance et 1 intérêt marqué pour les réseaux gouvernementaux
-
#SilverDragon est 1 opération d’ #espionnage informatique suivie par plusieurs équipes de threat intelligence.Les chercheurs y voient une attribution à #APT41 avec 1 outillage soigné, des phases discrètes de reconnaissance et 1 intérêt marqué pour les réseaux gouvernementaux tr92.fr/quand-le-cyb...
Quand le cyber-espionnage d’ét... -
#SilverDragon est 1 opération d’ #espionnage informatique suivie par plusieurs équipes de threat intelligence.Les chercheurs y voient une attribution à #APT41 avec 1 outillage soigné, des phases discrètes de reconnaissance et 1 intérêt marqué pour les réseaux gouvernementaux tr92.fr/quand-le-cyb...
Quand le cyber-espionnage d’ét... -
#CheckPoint Research observed #Amaranth-Dragon, a Chinese-aligned group linked to #APT41, conducting espionage against government and law enforcement across Southeast Asia. The threat actor weaponized #WinRAR flaw CVE-2025-8088 within 10 days after its disclosure, geo-fenced servers to targets, and introduced #TGAmaranth, a Telegram-based remote access tool.
-
#CheckPoint Research observed #Amaranth-Dragon, a Chinese-aligned group linked to #APT41, conducting espionage against government and law enforcement across Southeast Asia. The threat actor weaponized #WinRAR flaw CVE-2025-8088 within 10 days after its disclosure, geo-fenced servers to targets, and introduced #TGAmaranth, a Telegram-based remote access tool.
-
#CheckPoint Research observed #Amaranth-Dragon, a Chinese-aligned group linked to #APT41, conducting espionage against government and law enforcement across Southeast Asia. The threat actor weaponized #WinRAR flaw CVE-2025-8088 within 10 days after its disclosure, geo-fenced servers to targets, and introduced #TGAmaranth, a Telegram-based remote access tool.
-
#CheckPoint Research observed #Amaranth-Dragon, a Chinese-aligned group linked to #APT41, conducting espionage against government and law enforcement across Southeast Asia. The threat actor weaponized #WinRAR flaw CVE-2025-8088 within 10 days after its disclosure, geo-fenced servers to targets, and introduced #TGAmaranth, a Telegram-based remote access tool.
-
Злоумышленники перенимают опыт коллег: что общего между SilverFox и APT41. Разбор атаки
Привет, Хабр! На связи Евгения Устинова, старший аналитик сетевой безопасности группы компаний «Гарда» . В статье хочу рассказать, как нам удалось связать инструментарий двух группировок через особенности реализации сетевых протоколов. Отследить эволюцию инструментов группировки SilverFox – например, ПО Winos – по отпечатку процедуры сетевой коммуникации оказалось довольно сложной задачей, поэтому я решила поделиться кейсом. Подключайтесь к расследованию
https://habr.com/ru/companies/garda/articles/962222/
#разбор_атаки #Winos #Silverfox #вредоносы #фишинг #ValleyRAT #apt41 #winnti
-
Злоумышленники перенимают опыт коллег: что общего между SilverFox и APT41. Разбор атаки
Привет, Хабр! На связи Евгения Устинова, старший аналитик сетевой безопасности группы компаний «Гарда» . В статье хочу рассказать, как нам удалось связать инструментарий двух группировок через особенности реализации сетевых протоколов. Отследить эволюцию инструментов группировки SilverFox – например, ПО Winos – по отпечатку процедуры сетевой коммуникации оказалось довольно сложной задачей, поэтому я решила поделиться кейсом. Подключайтесь к расследованию
https://habr.com/ru/companies/garda/articles/962222/
#разбор_атаки #Winos #Silverfox #вредоносы #фишинг #ValleyRAT #apt41 #winnti
-
Злоумышленники перенимают опыт коллег: что общего между SilverFox и APT41. Разбор атаки
Привет, Хабр! На связи Евгения Устинова, старший аналитик сетевой безопасности группы компаний «Гарда» . В статье хочу рассказать, как нам удалось связать инструментарий двух группировок через особенности реализации сетевых протоколов. Отследить эволюцию инструментов группировки SilverFox – например, ПО Winos – по отпечатку процедуры сетевой коммуникации оказалось довольно сложной задачей, поэтому я решила поделиться кейсом. Подключайтесь к расследованию
https://habr.com/ru/companies/garda/articles/962222/
#разбор_атаки #Winos #Silverfox #вредоносы #фишинг #ValleyRAT #apt41 #winnti
-
Злоумышленники перенимают опыт коллег: что общего между SilverFox и APT41. Разбор атаки
Привет, Хабр! На связи Евгения Устинова, старший аналитик сетевой безопасности группы компаний «Гарда» . В статье хочу рассказать, как нам удалось связать инструментарий двух группировок через особенности реализации сетевых протоколов. Отследить эволюцию инструментов группировки SilverFox – например, ПО Winos – по отпечатку процедуры сетевой коммуникации оказалось довольно сложной задачей, поэтому я решила поделиться кейсом. Подключайтесь к расследованию
https://habr.com/ru/companies/garda/articles/962222/
#разбор_атаки #Winos #Silverfox #вредоносы #фишинг #ValleyRAT #apt41 #winnti
-
Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker https://www.securityweek.com/details-emerge-on-chinese-hacking-operation-impersonating-us-lawmaker/ #cyberespionage #Nation-State #BrassTyphoon #espionage #ChinaAPT #Winnti #APT41 #China
-
Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker https://www.securityweek.com/details-emerge-on-chinese-hacking-operation-impersonating-us-lawmaker/ #cyberespionage #Nation-State #BrassTyphoon #espionage #ChinaAPT #Winnti #APT41 #China
-
Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker https://www.securityweek.com/details-emerge-on-chinese-hacking-operation-impersonating-us-lawmaker/ #cyberespionage #Nation-State #BrassTyphoon #espionage #ChinaAPT #Winnti #APT41 #China
-
Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker https://www.securityweek.com/details-emerge-on-chinese-hacking-operation-impersonating-us-lawmaker/ #cyberespionage #Nation-State #BrassTyphoon #espionage #ChinaAPT #Winnti #APT41 #China
-
Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker https://www.securityweek.com/details-emerge-on-chinese-hacking-operation-impersonating-us-lawmaker/ #cyberespionage #Nation-State #BrassTyphoon #espionage #ChinaAPT #Winnti #APT41 #China
-
Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker https://www.securityweek.com/details-emerge-on-chinese-hacking-operation-impersonating-us-lawmaker/ #cyberespionage #Nation-State #BrassTyphoon #espionage #ChinaAPT #Winnti #APT41 #China
-
Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker https://www.securityweek.com/details-emerge-on-chinese-hacking-operation-impersonating-us-lawmaker/ #cyberespionage #Nation-State #BrassTyphoon #espionage #ChinaAPT #Winnti #APT41 #China
-
Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker https://www.securityweek.com/details-emerge-on-chinese-hacking-operation-impersonating-us-lawmaker/ #cyberespionage #Nation-State #BrassTyphoon #espionage #ChinaAPT #Winnti #APT41 #China
-
Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report https://www.securityweek.com/chinese-spies-impersonated-us-lawmaker-to-deliver-malware-to-trade-groups-report/ #cyberespionage #impersonation #Nation-State #espionage #ChinaAPT #APT41 #China #US
-
Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report https://www.securityweek.com/chinese-spies-impersonated-us-lawmaker-to-deliver-malware-to-trade-groups-report/ #cyberespionage #impersonation #Nation-State #espionage #ChinaAPT #APT41 #China #US
-
Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report https://www.securityweek.com/chinese-spies-impersonated-us-lawmaker-to-deliver-malware-to-trade-groups-report/ #cyberespionage #impersonation #Nation-State #espionage #ChinaAPT #APT41 #China #US
-
Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report https://www.securityweek.com/chinese-spies-impersonated-us-lawmaker-to-deliver-malware-to-trade-groups-report/ #cyberespionage #impersonation #Nation-State #espionage #ChinaAPT #APT41 #China #US
-
Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report https://www.securityweek.com/chinese-spies-impersonated-us-lawmaker-to-deliver-malware-to-trade-groups-report/ #cyberespionage #impersonation #Nation-State #espionage #ChinaAPT #APT41 #China #US
-
Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report https://www.securityweek.com/chinese-spies-impersonated-us-lawmaker-to-deliver-malware-to-trade-groups-report/ #cyberespionage #impersonation #Nation-State #espionage #ChinaAPT #APT41 #China #US
-
Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report https://www.securityweek.com/chinese-spies-impersonated-us-lawmaker-to-deliver-malware-to-trade-groups-report/ #cyberespionage #impersonation #Nation-State #espionage #ChinaAPT #APT41 #China #US
-
Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report https://www.securityweek.com/chinese-spies-impersonated-us-lawmaker-to-deliver-malware-to-trade-groups-report/ #cyberespionage #impersonation #Nation-State #espionage #ChinaAPT #APT41 #China #US
-
🚨 U.S. probes APT41-linked malware targeting trade talks
📎 Spoofed Rep. John Moolenaar emails
🎯 Targets: law firms, gov agencies, trade groups
🇨🇳 Linked to Chinese espionageFBI: “We are working with our partners to identify and pursue those responsible.”
-
🚨 U.S. probes APT41-linked malware targeting trade talks
📎 Spoofed Rep. John Moolenaar emails
🎯 Targets: law firms, gov agencies, trade groups
🇨🇳 Linked to Chinese espionageFBI: “We are working with our partners to identify and pursue those responsible.”
-
The SOC files: Rumble in the jungle or APT41’s new target in Africa
#APT41
https://securelist.com/apt41-in-africa/116986/ -
The SOC files: Rumble in the jungle or APT41’s new target in Africa
#APT41
https://securelist.com/apt41-in-africa/116986/ -
The SOC files: Rumble in the jungle or APT41’s new target in Africa
#APT41
https://securelist.com/apt41-in-africa/116986/ -
The SOC files: Rumble in the jungle or APT41’s new target in Africa
#APT41
https://securelist.com/apt41-in-africa/116986/ -
The SOC files: Rumble in the jungle or APT41’s new target in Africa
#APT41
https://securelist.com/apt41-in-africa/116986/ -
Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign https://www.securityweek.com/chinese-espionage-crews-circle-sentinelone-in-year-long-reconnaissance-campaign/ #IncidentResponse #Malware&Threats #SentinelLabs #NationState #SentinelOne #PurpleHaze #Shadowpad #APT41 #China
-
Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign https://www.securityweek.com/chinese-espionage-crews-circle-sentinelone-in-year-long-reconnaissance-campaign/ #IncidentResponse #Malware&Threats #SentinelLabs #NationState #SentinelOne #PurpleHaze #Shadowpad #APT41 #China
-
Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign https://www.securityweek.com/chinese-espionage-crews-circle-sentinelone-in-year-long-reconnaissance-campaign/ #IncidentResponse #Malware&Threats #SentinelLabs #NationState #SentinelOne #PurpleHaze #Shadowpad #APT41 #China
-
Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign https://www.securityweek.com/chinese-espionage-crews-circle-sentinelone-in-year-long-reconnaissance-campaign/ #IncidentResponse #Malware&Threats #SentinelLabs #NationState #SentinelOne #PurpleHaze #Shadowpad #APT41 #China