Alloy Taurus, a Chinese nation-state group, is using malicious cyber activity to target South Africa and Nepal, as well as other countries.
They are using a Linux variant of a backdoor called PingPull and a new undocumented tool called Sword2033.
Both are configured to communicate with a C2 server over HTTPS.
The group has been active since 2012 and has been targeting telecom companies, financial institutions and government entities.
This suggests that they are continuing to evolve their operations to support their espionage activities.
👋 Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! 🛍️
If not, consider contributing to my caffeine supply at Buy Me a Coffee ☕️.
Your clicks = cosmic support for more awesome content! 🚀🌈
Leave a Reply