九色

Featured Stories

China-Linked Hackers Hit Southeast Asia Diplomats, Google Says

By | August 26, 2025
Email This

Diplomats in Southeast Asia were targeted in a cyber-espionage campaign earlier this year, likely waged in support of operations aligned with the strategic interests of China, according to Google.

The attacks, using social engineering and malware disguised as innocuous software updates, are attributed to the China-linked UNC6384 group, Alphabet Inc.’s Google Threat Intelligence Group said on Monday, citing technical evidence. The “UNC” term applies to hacking activity that is linked but not yet categorized under another group.

About two dozen victims downloaded malware, according to Patrick Whitsell, a senior security engineer at Google. While Google did not specify the nationalities of the affected diplomats, Whitsell told Bloomberg News in an interview that he has high confidence that the attacker is “China-aligned.” Those people can be either inside the government or outside contractors, he added.

The report, detailing Google findings from March, adds to tension between the US and China along cybersecurity lines. Microsoft Corp. warned last month that Chinese state-sponsored hackers were exploiting flaws in its software to break into institutions globally, while the government in Beijing this month alleged US spies were launching cyberattacks on Chinese military companies via another Microsoft vulnerability. China also recently questioned the security of Nvidia Corp.’s designed-for-China H20 AI chips.

China’s Ministry of Foreign Affairs didn’t respond to a request for comment.

Google said hackers had breached targets’ Wi-Fi networks, and then abused that access to dupe diplomats into downloading malware disguised as Adobe Inc. plug-in software. The malware, called SOGU.SEC, was then installed in the memory of the device to avoid detection, explained Whitsell.

“I would assume diplomats have pretty sensitive documents on their laptops that they’re using for their day-to-day work. And yeah, once you’re on that device, you can get those documents,” said Whitsell, adding that he wasn’t able to see how much data was sent out or lost.

Photo: Photographer: Bloomberg Creative Photos/Bloomberg Creative Collection

Copyright 2025 Bloomberg.

Topics Cyber China

Was this article valuable?

Here are more articles you may enjoy.

Reinsurers Have Made Major Structural Changes to Improve Profits. Will Discipline Last?
Tesla Drivers Can Pursue Class Action Over Self-Driving Claims, Judge Rules
Ugly Corn Photos on Social Media Show Risk Posed to Record US Crop
Rear view of female job applicant talking to recruiters listen at job interview, woman vacancy candidate seeker sits back making first impression on hr managers in office, hiring recruitment conceptCarrier Revenue Growth Expected to Outpace Hiring in Next Year

Written By Jane Lanhee Lee

More From Author
Email This
MyNewMarkets
Claims Journal
Academy of Insurance education
  • August 7
  • August 14
  • August 19
  • August 21