Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

CentryNex

A China-linked espionage group hid inside North American medical, academic, and military research networks for more than a year, quietly stealing sensitive research and defense email.

The way in was a backdoor on their REDCap research servers that stole login credentials. The exfiltration was the unusual part: the attackers rewired the victims’ own Google Workspace rules to copy any message

SOURCE:

Share the Post:

Related News

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Cybersecurity researchers have flagged two malicious cyber campaigns that exhibit similarities with a persistent North Korean threat cluster known as

LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers

A default low-privilege account on a LiteLLM proxy can climb to full admin and run code on the server by

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

Stuff broke again. Not in a movie way. An old tool was left exposed. An abandoned package was abused. A

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

CentryNex

Related News

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

Company

Services

Contact Us