The European Union Agency for Cybersecurity (ENISA) released a joint advisory with the European Computer Emergency Response Team (CERT-EU) to draw attention to increased activity from China-based advanced persistent threat (APT) groups. ENISA identified well-known adversaries such as APT27, APT30, APT31, and Mustang Panda, targeting several European businesses and government entities.
Impact: The linked article includes technical details for several Chinese APTs, including their motives, associated malware, recent operations, and aliases.
Recommendation: Organizations should leverage the advisory’s information about Chinese APTs’ popular tactics, techniques, and procedures (TTPs) to strengthen their environments against similar threats and behaviors.