Bronze Union, a Chinese-based APT group has updated its RAT tools to further its malicious operations further. In their analysis, researchers from SecureWorks found that the APT’s tools were possessing new features. The threat group extensively relied on watering hole attacks with these tools.
Over the years, Bronze Union came up with a variety of tools to perpetuate its attacks. It has come to notice that the group has now tried to steal data pertaining to weapons technology.
The big picture
“We anticipate that the group will continue to evolve their tools and capabilities to ensure their effectiveness, This constant evolution means that for an organization facing this threat it’s important to have strategies in place that focus on threat actor behaviors rather than known bad tools and infrastructure which will inevitably change over time,” the researchers told ThreatPost.
Therefore, IT organizations and users alike should be wary of these tools and keep an eye on any suspicious activity involving sensitive information.