19 October 18, 14:08
(This post was last modified: 19 October 18, 14:10 by silversurfer.)
Quote:A China-linked cyber espionage group known as Tick was observed using the Datper malware in a recent campaign, Cisco Talos security researchers reveal.
The security researchers observed other compromised websites as well being used as C&C servers as part of the attack. This led to the hypothesis that the malware could be delivered via web-based assaults, such as drive-by downloads or watering hole attacks. Talos also discovered hosts that were being used as C&C servers although they were not connected to compromised websites. This would suggest that the hackers initially deployed the C&C infrastructure on legitimately obtained (and potentially purchased) hosts.
Source: https://www.securityweek.com/chinese-hac...t-campaign
![[-]](https://www.geeks.fyi/images/collapse.png)
