The Threat CodexMay 6
UAT-8302 and its box full of malware
#UAT_8302 #NetDraft #Vshell #SNOWLIGHT #SNAPPYBEE #Zingdoor
https://blog.talosintelligence.com/uat-8302/
UAT-8302 and its box full of malware

Cisco Talos is disclosing UAT-8302, a sophisticated, China-nexus advanced persistent threat (APT) group targeting government entities in South America since at least late 2024 and government agencies in southeastern Europe in 2025.

Cisco Talos Blog
The Threat CodexOct 22, 2025
ToolShell Used to Compromise Telecoms Company in Middle East
#CVE_2025_53770 #Zingdoor #KRUSTYLOADER #ShadowPad #CVE_2021_36942
https://www.security.com/threat-intelligence/toolshell-china-zingdoor
ToolShell Used to Compromise Telecoms Company in Middle East

China-based threat actors also compromised networks of government agencies in countries in Africa and South America.