Kaspersky researchers have revealed an ongoing and large-scale advanced persistent threat (APT) campaign with hundreds of victims from Southeast Asia. The threat actors use spear-phishing emails with malicious Dropbox download links that deliver RAR archives camouflaged as Word documents and bundling malware payloads to gain access to their targets’ systems. While analyzing LuminousMoth’s cyberespionage attacks against several Asian government entities that started since at least October 2020, researchers discovered a total of 100 victims in Myanmar and 1,400 in the Philippines.
Source: https://www.bleepingcomputer.com/news/security/chinese-cyberspies-wide-scale-apt-campaign-hits-asian-govt-entities/