China’s BADAUDIO Blues: APT24 Strikes Again with Sneaky Malware Shenanigans
The China-nexus threat actor APT24 has been busy with BADAUDIO, a new malware campaign. This isn’t just your average cyber mischief; it’s a three-year-long digital escapade. APT24 has swapped its old tricks for sophisticated tactics, targeting organizations in Taiwan while using watering holes and phishing as their go-to moves.
Hot Take:
When it comes to digital espionage, APT24 is clearly the James Bond of the cyber world—minus the tuxedo and martinis, but definitely armed with a license to hack. Their latest escapade, BADAUDIO, is like a blockbuster sequel no one asked for, but everyone’s watching. So buckle up, because this thriller is far from over!
Key Points:
- APT24, aka Pitty Tiger, is a China-linked hacking group targeting U.S. and Taiwan sectors with the new BADAUDIO malware.
- BADAUDIO acts as a first-stage downloader, using advanced techniques like watering holes and supply chain attacks for persistence.
- Since November 2022, the group has compromised over 20 websites for malicious intent, mostly avoiding Apple’s ecosystem.
- The group is linked to Earth Aughisky, sharing infrastructure and malware like Taidoor and Specas.
- CyberArmor’s Autumn Dragon campaign reveals further China-nexus threats in Southeast Asia.
Already a member? Log in here