A Chinese-state threat actor known as Unfading Sea Haze has been conducting cyberespionage on South China Sea governments for years using a variety of tools such as keyloggers and custom malware. The group, which has links to Beijing, employs innovative techniques like fileless attacks and DLL sideloading to make detection challenging. By leveraging an array of tools like DustyExfilTool and Gh0st RAT, the threat actors focus on espionage and aim to steal sensitive information from compromised systems
Bitdefender's investigation identified at least eight victims, mainly government and military agencies, indicating an evolution in their tactics to improve operational security by changing exfiltration techniques and employing fileless attack methods. ```https://www.bankinfosecurity.com/unfading-sea-haze-apt-targeting-south-china-sea-governments-a-25289