In the past, the group has targeted different sectors in East and Southeast Asia, but recently has pivoted its focus to the Middle East, specifically to entities that publish human rights studies.
Sighting this group’s TTPs in critical governmental entities in the Middle East, particularly those related to human rights studies, marks a new strategic move for them. This can help the threat intelligence community better understand the motives of this threat actor.
If they never tell us who/what was targeted, then it doesn’t help anybody understand the motives. In fact it seems like the motives are being intentionally hidden.
Not quite what the actual source says… Imagine if every hack in English was called British.
If they never tell us who/what was targeted, then it doesn’t help anybody understand the motives. In fact it seems like the motives are being intentionally hidden.