Researchers with Palo Alto Networks have uncovered a new campaign by Chinese hackers that targets governments in the Middle East. The actor behind the attacks has been identified as Chinese cyber espionage group Emissary Panda (aka APT27, TG-3390, Bronze Union, and Lucky Mouse).
Between April 1 and 16, Emissary Panda members targeted SharePoint servers of two government agencies in the region in order to take advantage of a remote code execution vulnerability. The flaw allowed the attackers to upload various information gathering tools onto the targeted networks.
Read more: Chinese Cyber-Spies Target Government Organizations in Middle East