APT41 Archives

Chinese, A PRC flag flies atop a metal flagpole

Chinese Group Accused of Using Fake U.S. Rep. Email to Spy on Trade Talks

Jeffrey Burt | September 8, 2025 | APT41, china espionage, fraudulent email, U.S.-China relations

The Chinese state-sponsored group APT41 is accused of using a fake email impersonating a U.S. representative containing spyware and sent to government agencies, trade groups, and laws firms to gain information about ...

Security Boulevard

WarGames – it’s not 1983 anymore

China’s state-sponsored cyber operations, driven by groups like Volt Typhoon, Salt Typhoon, Brass Typhoon, and APT41, and amplified by techniques like Fast Flux DNS, are not chasing Hollywood apocalypse—they’re seizing America’s networks, ...

MixMode

PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs

Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures ...

Security Boulevard

APT41 Sent US Covid Cash to China — Wicked Panda

Richi Jennings | December 6, 2022 | APT41, Barium, china, COVID Fraud, covid-19 fraud, PPP, PPP Fraud, SB Blogwatch, secret service, These Chinese hackers were pathetic slackers compared to US scammers, U.S. Secret Service, Wicked Panda, Winnti

Chinese hackers stole tens of millions of dollars from PPP, the federal Paycheck Protection Program. So say Secret Service sources ...

Security Boulevard

Attacks by Prolific APT41 Tied to Chinese Government

Teri Robinson | October 6, 2021 | APT41, blackberry, china, cyberthreat research, cyberthreats, indicators of compromise

Chinese state-sponsored APT41 is behind more cyberattack campaigns than previously known, according to new research from the BlackBerry Research and Intelligence Unit. Inspired by details on Cobalt Strike activity that used a ...

Security Boulevard

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

BrianKrebs | September 17, 2020 | anvisoft, APT41, Barium, Chengdu 404, cisco, Citrix, D-Link, Ne'er-Do-Well News, Pulse, SonarX, Tan Dailin, Techcrunch, Wicked Panda, Wicked Rose, Wicked Spider, Winnti, Withered Rose, Zack Whittaker

The U.S. Justice Department this week indicted seven Chinese nationals for a decade-long hacking spree that targeted more than 100 high-tech and online gaming companies. The government alleges the men used malware-laced ...

Krebs on Security

APT41

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On