Converging Interests: Analysis of Threat Clusters Targeting a Southeast Asian Government

Unit 42 researchers have uncovered a cyberespionage campaign targeting a Southeast Asian government, involving three distinct threat clusters: Stately Taurus, CL-STA-1048, and CL-STA-1049. These clusters utilize various malware and tools, including backdoors, RATs, and loaders, with evidence suggesting coordination among China-aligned actors to achieve persistent access and data exfiltration.