FlagThis
← All Threat Actors
Threat Actor Profile
Earth Lusca
AQUATIC PANDA
BountyGlad
BRONZE UNIVERSITY
Charcoal Typhoon
CHROMIUM
ControlX
FISHMONGER
G1006
Red Dev 10
Red Scylla
RedHotel
TAG-22
▲ High Threat
Perimeter Device Exploitation Campaign, Regional Diplomatic Espionage
Origin
China
Sponsor
People's Republic of China (PRC)
Motivation
Strategic intelligence gathering, political espionage, and intellectual property theft
Target Sectors
Government Agencies
Defense Contractors
Telecommunications
Critical Infrastructure
Technology and Semiconductor Sectors
Diplomatic Entities
Known TTPs
Spear-phishing with malicious attachments
Exploitation of vulnerabilities in edge/perimeter devices
Living-off-the-land (LotL) techniques
DLL Side-loading
Custom backdoor deployment
Credential harvesting
External Resources
MITRE ATT&CK ↗
CISA Advisories ↗
Mandiant Research ↗
Google Threat Intel ↗
Related Intelligence
Hacking the mainframe…
DEEP DIVE
Malicious Chromium Extension Spoofing Perplexity AI for Real-Time Data Exfiltration
Attacks and Vulnerabilities
2026-07-02
No related stories found in the intelligence database.
SHARE INTELLIGENCE WIRE
×
Story Title
X / Twitter
Bluesky
LinkedIn
Copy Link
LINK COPIED TO CLIPBOARD