FireEye researchers believe that APT32 carried out intrusion campaigns against Chinese targets from at least January to April 2020.
APT32 likely used Covid-19-themed malicious attachments against Chinese speaking targets.
It then attempts to call out to the URL.
If the callout is successful, the malware loads the METALJACK payload into memory.
Medical research has been targeted as well, FireEye said.
Until this crisis ends, we anticipate related cyber espionage will continue to intensify globally.
The accusation is baseless, Foreign Ministry spokesman Ngo Toan Thang told reporters.
Vietnam forbids all cyberattacks, which should be denounced and strictly dealt with by law.
Thang also added that Vietnam is ready to cooperate with international partners to fight cyberattacks.
source: www.techworm.net
