China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists

A new China-aligned espionage campaign, tracked as SHADOW-EARTH-053, has targeted government and defense sectors in Asia and one NATO state, Poland, by exploiting vulnerabilities in Microsoft Exchange and IIS servers. Concurrently, separate China-affiliated groups, GLITTER CARP and SEQUIN CARP, have been impersonating journalists and activists in phishing campaigns to harvest credentials and gain access to email accounts.