Chinese Hackers Exploit GeoServer Flaw to Target APAC Nations with EAGLEDOOR Malware

Chinese Hackers Exploit GeoServer Flaw to Target APAC Nations with EAGLEDOOR Malware

/in

A suspected advanced persistent threat (APT) originating from China targeted a government organization in Taiwan, and possibly other countries in the Asia-Pacific (APAC) region, by exploiting a recently patched critical security flaw impacting OSGeo GeoServer GeoTools.
The intrusion activity, which was detected by Trend Micro in July 2024, has been attributed to a threat actor dubbed Earth Baxia

The Hacker News – ​Read More

China’s ‘Earth Baxia’ Spies Exploit Geoserver to Target APAC...China’s ‘Earth Baxia’ Spies Exploit Geoserver to Target APAC OrgsUndetected Android Spyware Targeting Individuals In South KoreaUndetected Android Spyware Targeting Individuals In South Korea