A Chinese state-sponsored hacking group, TAG-112, compromised Tibetan community websites to install malware, targeting users for information collection and surveillance purposes. The attack involved prompting visitors to download a malicious file, deploying Cobalt Strike Beacon malware for key logging and file transferring. The group, linked to TAG-102, has a history of targeting those opposed to the Chinese government, including human rights organizations and supporters of democracy, with the Gyudmed Tantric University resolving the issue while The Tibet Post remains compromised, promoting Tibetan independence from China amid ongoing human rights abuses in Tibet.
Full Article
Loading PerspectiveSplit analysis...





