Chinese espionage groups have been observed using open-source tools to carry out attacks.

The Chinese espionage group, UNC5174, has been observed using open-source tools to carry out attacks. Researchers say that the move mirrors what they have seen in other state sponsored groups. Increasingly groups are using cheaper open-source tools rather than developing custom tools. They also noted that by using open-source tools it is harder to specifically identify who is responsible for an attack.

Read more:

https://cyberscoop.com/chinese-espionage-group-unc5174-open-source-tools/