- Date of Incident (ET): Not known
- Date of Disclosure/Publication (ET): Sept. 23, 2025
Summary: Chinese-speaking threat actor deploys BadIIS malware via SEO poisoning, redirecting traffic and planting web shells in East and Southeast Asia.
BadIIS Malware Uses SEO Poisoning to Spread, Plants Web Shells in East Asia
Edward Kiledjian
@ekiledjian