Chinese cybercrime group, Cisco CM flaw, CISA faces changes

According to
Proofpoint
, the group, currently tracked as TA4922, “has been escalating activities and expanding to new geographies. It uses social engineering to deliver malware and engage in credential phishing and fraud schemes such as credit card theft.” They do not appear to be involved in espionage, but instead appear to be financially motivated, using HR, payroll tax, and invoicing themes. The group has started to expand beyond its current targets in Japan, Taiwan, Korea, Singapore, and India, to also focus on organizations…