Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Suspected Chinese Group Exploiting Microsoft Exchange Servers
Threat Actors
March 26, 2021
Recorded Future
Beginning on March 1, 2021, Recorded Future’s Insikt Group identified a large increase in victim communications to PlugX command and control (C2) infrastructure publicly attributed to the suspected Chinese state-sponsored group Calypso APT.
Read More
Microsoft Exchange Server
Calypso APT
command and control (C2) server
ProxyLogon vulnerabilities
Web shell
Publisher
Previous
Watch out for Russia and China, UK's cyber security bos ...
Geopolitical, Terrorism
Next
Sierra Wireless partially restores network following ra ...
Incident Response, Learnings
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_519199699.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/a530_shutterstock_1200209332.jpg)
