A Chinese advanced persistent threat (APT) hackers has been observed using a modified version of the Log4j exploit to target a large unnamed academic institution. The said exploit was performing various operations such as recon and credential harvesting on the targeted systems. The APT group was dubbed as "Aquatic Panda" and some believed that they are on-the-go since mid-2020. As Benjamin Wiley said on the CrowdStrike report, it is a China-based [APT] with a dual mission of intelligence collection and industrial espionage. Their attacks mostly targeted companies in telecommunications, technology, and government sectors. According to the CrowdStrike, researchers from Falcon OverWatch recently disrupted an attempt to steal industrial intelligence and military secrets from an unnamed academic institution using Log4Shell exploit tools. The researchers uncovered the suspic...
"It's all you should know!"