In just the past three months, three new phishing campaigns have compromised over 40,000 users, including top-level executives. Using browsers, the attacks are able to target various industries, entering corporate environments. The attacks can get past network security and have demonstrated the ability to evolve. The three phishing campaigns are called LegalQloud, Eqooqp, and Boomer. They use what experts call a highly evasive and adaptive threat (HEAT) attack, and are aimed at credential phishing. There is evidence connecting these attacks to China-sponsored threat actors.
Read more: https://www.darkreading.com/threat-intelligence/china-sponsored-attackers-40k-corporate-users