Warning: Targeted cyber attack campaign aimed at Vietnam
The National Cyber Security Center (NCSC), under the Authority of Information Security, Ministry of Information and Communications, has detected and recorded a new targeted cyber attack campaign using the AppDomainManager Injection technique to spread malware since July 2024. This campaign, possibly linked to the APT 41 group, has affected government and military organizations in the Asia-Pacific region, including Vietnam.
The malware has been identified as CobaltStrike, with technical indicators and infrastructure similar to the APT 41 group. The campaign has impacted government agencies in Taiwan and military units in the Philippines. This demonstrates the scale and dangerous nature of the attack, requiring enhanced prevention measures from cybersecurity agencies in the region.