Researchers report new operation involving spies using upgraded Gh0st RAT

Researchers report new operation involving spies using upgraded Gh0st RAT

A new cyber espionage operation, dubbed SneakyChef by cybersecurity firm Cisco Talos, has been targeting foreign ministries and embassies across multiple countries. The threat actor behind the operation is using a modified version of the Gh0st RAT malware, known as SugarGh0st, which has ties to Chinese state-backed operations. SugarGh0st is distributed through infected scanned documents … Read more

Chinese Spies Exploited Critical VMware Bug for Nearly 2 Years

Chinese Spies Exploited Critical VMware Bug for Nearly 2 Years

One of the most serious VMware vulnerabilities in recent memory was secretly being exploited by a Chinese advanced persistent threat (APT) for years before a patch became available. It was all-hands-on-deck in October when news first broke of CVE-2023-34048, a 9.8 out of 10 “critical” CVSS-rated out-of-bounds write vulnerability affecting vCenter Server, VMware’s centralized platform … Read more