China-linked APT UAT-8837 targets North American critical infrastructure

A China-linked Advanced Persistent Threat (APT) group, tracked as UAT-8837, has been targeting North American critical infrastructure since at least 2025, employing tactics similar to other China-nexus groups. The group utilizes open-source tools for credential theft, reconnaissance, and maintaining access, and has shown evidence of using zero-day exploits.