Phishing Campaign Targets Chinese Government and State Enterprises
An extensive phishing campaign dubbed Bitter APT is targeting employees at China’s government agencies and state-owned enterprises to steal their email credentials. The phishing attacks are propagated via URL shorteners which redirect victims to six malicious domains hosting some 40 spoofed email login pages. All the spoofed pages contain a verification or account validation theme and use Domain Validation certificates issued by “Let’s Encrypt”. Most of the targeted organisations are related to economic trade, defence, aviation and foreign relations, suggesting that the threat actors are pursuing some form of espionage to gain an understanding of China’s motivation and policy directions in these areas.
More Weekly Cyber Newsanalysis and insights
Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.
Ensign Systems Integration
Architecting and implementing cybersecurity solutions that bolster defences
Ensign Managed Security Services
Managing your security operations for advanced threat detection, continuous monitoring, and triage services