An unidentified APT group has targeted organizations in Taiwan's manufacturing, IT, and biomedical sectors, as well as a government agency in the Pacific Islands, Vietnam, and the United States of America. The group, known as Grayling, uses custom malware and public tools for its attacks. The attackers employ techniques such as DLL sideloading, Cobalt Strike, NetSpy, and Havoc to escalate privileges, scan networks, and carry out other malicious activities. While no data exfiltration was detected, the group's focus suggests intelligence gathering in the manufacturing, IT, biomedical, and government sectors. The use of public tools makes attribution challenging for investigators. #CyberSecurity #APTHacking #Malware-Attacks

https://cybersecuritynews.com/apt-group-custom-malware/