China-based hackers exploited SAP flaw CVE-2025-31324 since April 29, impacting global industries via web shells.

Another noteworthy tool in TheWizards' arsenal is DarkNights, which is also called DarkNimbus by Trend Micro and has been ...

Chinese threat actor TheWizards observed running a SLAAC attack since 2022 The attack delivers tainted software updates Most ...

FBI Director Christopher Wray warned Thursday that Chinese hackers are waiting “for just the right moment to deal a devastating blow” to U.S. critical infrastructure. China is developing the “ability ...

For decades, China's cyber espionage centered on stealing intellectual property from the United States to bolster its own military and economy.

After China's Salt Typhoon breach of U.S. telecom networks, federal experts told Congress on Wednesday the nation remains ...

The FBI has asked the public for information on Chinese Salt Typhoon hackers behind widespread breaches of telecommunications ...

The researchers said the group running these attacks is called PurpleHaze, a threat actor that was also seen targeting a ...

SentinelOne has shared some information on the types of threat actors that have targeted the security firm recently.

A feature within the IPv6 network protocol has been abused for years by a Chinese hacker group called "TheWizards." ESET has ...

A China-aligned APT threat actor named "TheWizards" abuses an IPv6 networking feature to launch adversary-in-the-middle (AitM) attacks that hijack software updates to install Windows malware.