China

‘DKnife’ Implant Used by Chinese Threat Actor for Adversary-in-the-Middle Attacks

AitM, backdoor, China, DKnife, framework, Malware & Threats /

‘DKnife’ Implant Used by Chinese Threat Actor for Adversary-in-the-Middle Attacks 2026-02-06 at 11:08 By Ionut Arghire Used since at least 2019, DKnife has been targeting the desktop, mobile, and IoT devices of Chinese users. The post ‘DKnife’ Implant Used by Chinese Threat Actor for Adversary-in-the-Middle Attacks appeared first on SecurityWeek. This article is an excerpt […]

‘DKnife’ Implant Used by Chinese Threat Actor for Adversary-in-the-Middle Attacks Read More »

Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries

China, China APT, critical infrastructure, Government, Malware & Threats, Nation-State, rootkit, Shadow Campaigns /

Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries 2026-02-05 at 13:02 By Eduard Kovacs Palo Alto Networks has not attributed the APT activity to any specific country, but evidence points to China. The post Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries appeared first on SecurityWeek. This article is an excerpt

Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries Read More »

Cyber Insights 2026: Cyberwar and Rising Nation State Threats

China, cyberwar, Cyberwarfare, Featured, geopolitical, Geopolitics, Nation-State, Russia /

Cyber Insights 2026: Cyberwar and Rising Nation State Threats 2026-02-04 at 15:31 By Kevin Townsend While both cyberwar and cyberwarfare will increase through 2026, cyberwarfare is likely to increase more dramatically. We hope it will never boil over – but we should be aware of the possibility and its consequences. The post Cyber Insights 2026:

Cyber Insights 2026: Cyberwar and Rising Nation State Threats Read More »

Notepad++ supply chain attack: Researchers reveal details, IoCs, targets

APT, Asia, China, cyber espionage, Don't miss, government-backed attacks, Hot stuff, Kaspersky, News, Rapid7 /

Notepad++ supply chain attack: Researchers reveal details, IoCs, targets 2026-02-03 at 15:34 By Zeljka Zorz Rapid7 researchers have attributed the recent hijacking of the Notepad++ update mechanism to Lotus Blossom (aka Billbug), a Chinese state-sponsored group known for targeting organizations in Southeast Asia for espionage purposes. On Wednesday, Kaspersky researchers shared the insights they’ve gleaned

Notepad++ supply chain attack: Researchers reveal details, IoCs, targets Read More »

Ex-Google engineer found guilty of stealing AI secrets

China, cyber espionage, cybercrime, FBI, Google, Government, News, US DoJ, USA /

Ex-Google engineer found guilty of stealing AI secrets 2026-01-30 at 12:40 By Sinisa Markovic A federal jury in California convicted former Google software engineer Linwei Ding, also known as Leon Ding, on seven counts of economic espionage and seven counts of theft of trade secrets tied to AI technology. Ding faces a maximum sentence of

Ex-Google engineer found guilty of stealing AI secrets Read More »

TikTok Finalizes a Deal to Form a New American Entity

ByteDance, China, Compliance, deal, National Security, Privacy, Risk Management, TikTok, US /

TikTok Finalizes a Deal to Form a New American Entity 2026-01-26 at 14:37 By Associated Press TikTok has finalized a deal to create a new American entity, avoiding the looming threat of a ban in the United States. The post TikTok Finalizes a Deal to Form a New American Entity appeared first on SecurityWeek. This

TikTok Finalizes a Deal to Form a New American Entity Read More »

EU Plans Phase Out of High Risk Telecom Suppliers, in Proposals Seen as Targeting China

China, critical infrastructure, Europe, Government, Huawei, Security Infrastructure /

EU Plans Phase Out of High Risk Telecom Suppliers, in Proposals Seen as Targeting China 2026-01-20 at 22:00 By Associated Press Under the new rules, measures for 5G cybersecurity would become mandatory. The post EU Plans Phase Out of High Risk Telecom Suppliers, in Proposals Seen as Targeting China appeared first on SecurityWeek. This article

EU Plans Phase Out of High Risk Telecom Suppliers, in Proposals Seen as Targeting China Read More »

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393)

APT, backdoor, China, Cisco, cyber espionage, Don't miss, email security, enterprise, Hot stuff, News /

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393) 2026-01-16 at 17:05 By Zeljka Zorz Cisco has finally shipped security updates for its Email Security Gateway and Secure Email and Web Manager devices, which fix CVE-2025-20393, a vulnerability in the devices’ AsyncOS that has been exploited as a zero-day by suspected Chinese attackers since at

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393) Read More »

Cybersecurity Firms React to China’s Reported Software Ban

Ban, China, Featured, Government, Risk Management, security products /

Cybersecurity Firms React to China’s Reported Software Ban 2026-01-16 at 13:57 By Eduard Kovacs China has more than 5,000 cybersecurity companies and all the top 20 firms are working with the government.  The post Cybersecurity Firms React to China’s Reported Software Ban appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Cybersecurity Firms React to China’s Reported Software Ban Read More »

President Trump Orders Divestment in $2.9 Million Chips Deal to Protect US Security Interests

China, Government, HieFo Corp /

President Trump Orders Divestment in $2.9 Million Chips Deal to Protect US Security Interests 2026-01-03 at 13:38 By Associated Press The deal involved aerospace and defense specialist Emcore Corp. selling its computer chips and wafer fabrication operation. The post President Trump Orders Divestment in $2.9 Million Chips Deal to Protect US Security Interests appeared first

President Trump Orders Divestment in $2.9 Million Chips Deal to Protect US Security Interests Read More »

UK Government Acknowledges It Is Investigating Cyber Incident After Media Reports

China, China APT, Cyberwarfare, espionage, Government, Nation-State, UK, UK Government /

UK Government Acknowledges It Is Investigating Cyber Incident After Media Reports 2025-12-22 at 15:09 By Associated Press The British government is investigating a “cyber incident” following news reports that hackers linked to China have gained access to thousands of confidential documents. The post UK Government Acknowledges It Is Investigating Cyber Incident After Media Reports appeared

UK Government Acknowledges It Is Investigating Cyber Incident After Media Reports Read More »

Chinese APT ‘LongNosedGoblin’ Targeting Asian Governments

China, China APT, espionage, LongNosedGoblin, Malware & Threats, Nation-State /

Chinese APT ‘LongNosedGoblin’ Targeting Asian Governments 2025-12-19 at 16:42 By Ionut Arghire The hacking group has been using Group Policy to deploy cyberespionage tools on governmental networks. The post Chinese APT ‘LongNosedGoblin’ Targeting Asian Governments appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chinese APT ‘LongNosedGoblin’ Targeting Asian Governments Read More »

Group Policy abuse reveals China-aligned espionage group targeting governments

APT, China, cybercrime, ESET, Malware, News, surveillance /

Group Policy abuse reveals China-aligned espionage group targeting governments 2025-12-18 at 13:42 By Anamarija Pogorelec ESET Research has identified a previously undocumented China-aligned advanced persistent threat group that uses Windows Group Policy to deploy malware and move through victim networks. The group, tracked as LongNosedGoblin, has targeted government institutions in Southeast Asia and Japan with

Group Policy abuse reveals China-aligned espionage group targeting governments Read More »

China-Linked Hackers Exploiting Zero-Day in Cisco Security Gear

China, China APT, Cisco, CVE-2025-20393, exploited, Malware & Threats, UAT-9686, Vulnerabilities, Zero-Day /

China-Linked Hackers Exploiting Zero-Day in Cisco Security Gear 2025-12-18 at 09:18 By Eduard Kovacs The critical zero-day is tracked as CVE-2025-20393 and it impacts Secure Email Gateway and Secure Email and Web Manager appliances. The post China-Linked Hackers Exploiting Zero-Day in Cisco Security Gear appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

China-Linked Hackers Exploiting Zero-Day in Cisco Security Gear Read More »

Cisco email security appliances rooted and backdoored via still unpatched zero-day

APT, backdoor, China, Cisco, cyber espionage, Don't miss, email security, enterprise, Hot stuff, News /

Cisco email security appliances rooted and backdoored via still unpatched zero-day 2025-12-17 at 21:47 By Zeljka Zorz A suspected Chinese-nexus threat group has been compromising Cisco email security devices and planting backdoors and log-purging tools on them since at least late November 2025, Cisco Talos researchers have shared. “Our analysis indicates that appliances with non-standard

Cisco email security appliances rooted and backdoored via still unpatched zero-day Read More »

Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery

China, China APT, exploited, Malware, Malware & Threats, React, React2Shell /

Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery 2025-12-15 at 16:01 By Eduard Kovacs Google has also mentioned seeing React2Shell attacks conducted by Iranian threat actors. The post Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery Read More »

Notepad++ Patches Updater Flaw After Reports of Traffic Hijacking

China, Featured, Malware & Threats, Notepad++, supply chain, updater /

Notepad++ Patches Updater Flaw After Reports of Traffic Hijacking 2025-12-12 at 12:53 By Eduard Kovacs Notepad++ found a vulnerability in the way the software updater authenticates update files.  The post Notepad++ Patches Updater Flaw After Reports of Traffic Hijacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Notepad++ Patches Updater Flaw After Reports of Traffic Hijacking Read More »

UK Sanctions Russian and Chinese Firms Suspected of Being ‘Malign Actors’ in Information Warfare

China, Cyberwarfare, Russia /

UK Sanctions Russian and Chinese Firms Suspected of Being ‘Malign Actors’ in Information Warfare 2025-12-10 at 04:31 By Associated Press Britain and its allies face escalating “hybrid threats … designed to weaken critical national infrastructure, undermine our interests and interfere in our democracies.” The post UK Sanctions Russian and Chinese Firms Suspected of Being ‘Malign

UK Sanctions Russian and Chinese Firms Suspected of Being ‘Malign Actors’ in Information Warfare Read More »

Offensive cyber power is spreading fast and changing global security

China, CISO, cyber risk, cybersecurity, Don't miss, Hot stuff, NATO, News, report, research, Risk Management, Russian Federation, strategy, threats /

Offensive cyber power is spreading fast and changing global security 2025-12-01 at 08:36 By Sinisa Markovic Offensive cyber activity has moved far beyond a handful of major powers. More governments now rely on digital operations to project influence during geopolitical tension, which raises new risks for organizations caught in the middle. A new policy brief

Offensive cyber power is spreading fast and changing global security Read More »

Chinese Cyberspies Deploy ‘BadAudio’ Malware via Supply Chain Attacks

APT, BadAudio, China, China APT, Malware, Malware & Threats, Nation-State, supply chain /

Chinese Cyberspies Deploy ‘BadAudio’ Malware via Supply Chain Attacks 2025-11-21 at 13:46 By Ionut Arghire APT24 has been relying on various techniques to drop the BadAudio downloader and then deploy additional payloads. The post Chinese Cyberspies Deploy ‘BadAudio’ Malware via Supply Chain Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Chinese Cyberspies Deploy ‘BadAudio’ Malware via Supply Chain Attacks Read More »

Scroll to Top