Chinese cyberspies are evolving their tactics, focusing on IT staffers, relying more on spear-phishing instead of malware, and gathering code signing certificates in the preparation of future supply-chain attacks. 401TRG, the Threat Research & Analysis Team at ProtectWise, released a 45-page report yesterday. The group previously referred to as Winnti Umbrella, a generic term to describe a large part of the entire Chinese intelligence apparatus, as several previously separate cyber-espionage groups appear to use the same tactics and infrastructure.
Source: https://www.bleepingcomputer.com/news/security/chinese-cyberspies-appear-to-be-preparing-supply-chain-attacks/