Chinese APT group Tropic Trooper, aka KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines. Trend Micro researchers identified at least three versions of the malware with different variants and components. The malware dubbed USBferry has been used in attacks against military/navy agencies, government institutions, military hospitals, and also a national bank. In one case, the hackers compromised a military hospital and used it to move to the militarys physically isolated network.”]
Source: https://securityaffairs.co/wordpress/103292/apt/tropic-trooper-air-gapped-networks.html