Cybersecurity researchers have disclosed a series of attacks by a threat actor of Chinese origin. The attacks targeted organizations in Russia and Hong Kong with malware including a previously undocumented backdoor. Among the targets was a Unity3D game developer from St. Petersburg. Researchers attributed the attacks to Chinese threat actor Winnti (or APT41), Positive Technologies dated the first attack to May 12, 2020, when the APT used LNK shortcuts to extract and run the malware payload. A second attack detected on May 30 used a malicious RAR archive file consisting of shortcuts to two bait PDF documents purported to be a curriculum vitae and an IELTS certificate.
Source: https://thehackernews.com/2021/01/researchers-disclose-undocumented.html