Updated on 2022-12-07
Bitdefender says they’ve seen the BackdoorDiplomacy Chinese APT group targeting entities in the Middle East. The attacks, which started in August 2021, exploited the ProxyShell vulnerability to compromise Exchange servers with the IRAFAU and Quarian backdoors and various open-source proxy and remote access tools. Read more: BackdoorDiplomacy Wields New Tools in Fresh Middle East Campaign
Overview
Bitdefender connected a cyberespionage campaign targeting the Middle East to the China-based BackdoorDiplomacy APT group. The attack targeted a telecom company. Read more: BackdoorDiplomacy Wields New Tools in Fresh Middle East Campaign
