Tag: QiAnXin
-
The StreamSpy Breach: Patchwork’s Stealthy New Trojan Targets Pakistan Defense
The hacking group known as Patchwork—also referred to as Dropping Elephant and Maha Grass—has once again come under scrutiny following a series of targeted attacks against Pakistan’s defense institutions. In its latest campaign, the group employed phishing emails carrying ZIP archives that concealed an MSBuild project. When executed, the project triggers a loader that installs…
-
The Editor’s Trap: EmEditor Hijacked to Deploy Stealthy “Google Drive” Infostealer
In late December, an unwelcome supply-chain surprise erupted around the popular text editor EmEditor. According to the developer, between December 19 and 22, 2025, the download button on the official website may have served not the genuine installer, but a tampered MSI file bearing an чужая digital signature. Instead of Emurasoft, Inc., the suspicious file…
-
NightEagle APT Unleashed: Zero-Day Exchange Exploit Targets China’s Strategic Industries with Fileless Malware
Since 2023, the RedDrip Team has been meticulously monitoring the activities of one of the most elusive cyber espionage groups. This threat actor, armed with an unknown Exchange exploitation chain, distinguishes itself through substantial financial resources, enabling the acquisition of vast volumes of digital infrastructure—ranging from VPS servers to domain names. Each new target is…