Chinese-linked APT10 has been active in the Philippines, researchers say - CyberScoop

Chinese-linked APT10 has been active in the Philippines, researchers say - CyberScoop: An elite Chinese government-linked hacking group known for allegedly stealing reams of data from U.S. organizations has been actively targeting entities in the Philippines, according to new research first shared with CyberScoop. During the month of April, the APT10 hacking group, which U.S. officials have tied to China’s civilian intelligence agency, has been using two new malicious software variants to deliver its payloads against targets in the Philippines, according to analysts from endpoint security firm enSilo. “Both the loader variants and their various payloads that we analyzed share similar tactics, techniques, and procedures, and code associated with APT10,” the firm wrote in research published Friday. CyberScoop was unable to independently confirm that the malicious activity was tied directly to APT10. Some of the data points in the enSilo research have been tied to China-based hackers, but not exclusively to APT10, independent researchers said. It is unclear what the goal of the targeting …

explicita