Chinese hacking group “Cicada” is exploiting the critical Zerologon vulnerability in Windows Server as part of a cyberespionage campaign thats mainly targeting Japanese companies. Cicada, also known as APT10, Stone Panda, and Cloud Hopper, is linked to China’s Ministry of State Security. The group, which has been active since 2009, is using a previously unseen custom malware variant called BackdoorHartup as well as living-off-the-land tools to target the victims.”]
Source: https://www.cuinfosecurity.com/chinese-hackers-exploit-zerologon-flaw-for-cyberespionage-a-15406