A newly identified threat cluster designated OP-512 has been discovered targeting Microsoft IIS servers with a custom web shell framework for espionage purposes. ReliaQuest researchers assess with moderate to high confidence that the activity is linked to China-based threat actors, representing a significant risk to organizations running IIS infrastructure.
Cybersecurity researchers have discovered a previously unreported threat cluster dubbed OP-512 that has been observed targeting Microsoft Internet Information Services (IIS) servers to deploy a bespoke web shell framework. ReliaQuest has assessed with moderate to high confidence that the espionage-focused activity is linked to China. "OP-512 was highly likely conducting espionage through a
Originally published at thehackernews.com
60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.
