Researchers at CheckPoint Research (CPR) who specialize in cyber threat intelligence have discovered a pattern of assaults by Chinese attackers. They now seem to be focusing on European governing bodies, mostly in Eastern Europe.
What is Known About the Breaches
Diplomatic material was present in the majority of the compromised.docx and.pdf files utilized in the assault. A message from the Serbian embassy in Budapest, a document outlining the goals of the Swedish Presidency of the Council of the European Union, an invitation from the Ministry of Foreign Affairs of Hungary to a diplomatic conference, and an article about two Chinese human rights lawyers who were given prison sentences of more than ten years were all obtained by researchers.
Threat actors exploited HTML smuggling, a hacking method used by cybercriminals to deceive online security systems and get past their protections. It includes concealing harmful code behind ostensibly secure HTML tags or components.