An advanced persistent threat espionage campaign with suspected ties to the Chinese government targeted businesses and governments in 10 countries for two years. The campaign, dubbed Wocao, targeted government and managed service providers while managing to be “under the radar” Fox-IT report does not mention if the campaign is still active or identify the malware strain used by the threat group. The Dutch-based security firm says the campaign was active across 10 countries, including the U.S., several European countries and China. The attackers were able to bypass two-factor authentication by targeting devices with privileged access to the company’s network.”]
Source: https://www.cuinfosecurity.com/researchers-chinese-apt-espionage-campaign-bypasses-2fa-a-13557