The article discusses a new cyber-espionage campaign dubbed RevivalStone, attributed to the China-linked threat actor Winnti, which targeted Japanese firms in manufacturing and energy. Cybersecurity firm LAC revealed that this campaign is connected to a broader threat cluster, including APT41 and other organizations, highlighting Winnti's ongoing focus on Asia-Pacific enterprises. The group employs sophisticated malware tactics to infiltrate systems stealthily and manipulate communications, leveraging legitimate certificates for malicious purposes, reflecting alignment with strategic state objectives.
APT41 has been described as a highly skilled and methodical actor with the ability to mount espionage attacks as well as poison the supply chain.
The group's espionage activities, many of which are aligned with the nation's strategic objectives, have targeted a wide range of public and private industry sectors around the world.
Collection
[
|
...
]