A China-nexus threat actor has been conducting a sophisticated, multi-year espionage campaign using a custom malware downloader, compromising regional infrastructure and reaching over 1,000 global domains through strategic supply chain attacks. At the core of this operation is BADAUDIO, a highly obfuscated C++ first-stage downloader that employs advanced techniques like DLL search order hijacking and […]
The post APT24’s BADAUDIO: A Deep Dive into China-Nexus Espionage Against Taiwan appeared first on SecPod Blog.
