Category: Asia Pacific

It rains. It pours. Apple has lost its top AI models exec to Meta on the same day the Trump Administration slaps a 36% tax on Macs made in Thailand and US trade advisor Peter Navarro lashes out at Apple CEO Tim Cook.  Apple has been struggling to figure out how to transition its supply chain to other nations for…

Read more →

China’s Hikvision vows legal battle after Canada bans its operations, citing national security concerns

Read more →

Huawei’s AI research division has rejected claims that its Pangu Pro large language model copied elements from an Alibaba model, marking a significant escalation in China’s AI ecosystem as tech giants abandon their collaborative approach in favor of bitter public disputes. The telecommunications giant’s Noah Ark Lab issued a denial Saturday, after an entity called…

Read more →

Taiwan’s National Security Bureau (NSB) has warned that China-developed applications like RedNote (aka Xiaohongshu), Weibo, TikTok, WeChat, and Baidu Cloud pose security risks due to excessive data collection and data transfer to China. The alert comes following an inspection of these apps carried out in coordination with the Ministry of Justice Investigation Bureau (MJIB) and…

Read more →

Cybersecurity researchers have shed light on a previously undocumented threat actor called NightEagle (aka APT-Q-95) that has been observed targeting Microsoft Exchange servers as a part of a zero-day exploit chain designed to target government, defense, and technology sectors in China. According to QiAnXin’s RedDrip Team, the threat actor has been active since 2023 and…

Read more →

Taiwan warned that popular Chinese-owned apps, including TikTok and Weibo, are harvesting personal data and sending it back to servers in China

Read more →

Ransomware gang Hunters International says it’s shutting down its operations for unexplained reasons, and is offering decryption keys to victim organizations. The offer of decryption keys could be good news for CISOs whose data were recently scrambled and who can’t find a way to decrypt the files. However, judging from the history of ransomware gangs…

Read more →

Wild Tech has appointed Tiffany Ong as its new Head of Microsoft in Singapore, strengthening the company’s APAC leadership bench as it accelerates digital transformation for enterprise and small-to-mid-market (SMC) organisations

Read more →

The US has lifted export restrictions on semiconductor design software to China, reversing a controversial policy imposed just six weeks ago that had threatened to cripple China’s chip design capabilities.  The three leading semiconductor design software providers, Synopsys, Cadence Design Systems, and Germany’s Siemens, announced they had been notified that export license requirements for business…

Read more →

A likely China-nexus threat actor has been exploiting unpatched Ivanti vulnerabilities to gain initial access to victim networks and then patching the systems to block others from breaking in to the same network.

Read more →

Dutzende Cybercrime-Kampagnen mit Fokus auf Asien und die USA wurden als angebliche LAPD-Aktionen getarnt. FOTOGRIN – shutterstock.com Cybersecurity-Experten haben ein Netzwerk von mehr als 1.000 kompromittierten Small-Office- und Home-Office-Geräten (SOHO) entdeckt. Die Devices wurden laut den Experten dazu genutzt, eine langwierige Cyberspionage-Infrastrukturkampagne für chinesische Hacker-Gruppen zu ermöglichen. ShortLeash als zentrale Schadsoftware Das Strike-Team von SecurityScorecard…

Read more →

Threat hunters have discovered a network of more than 1,000 compromised small office and home office (SOHO) devices that have been used to facilitate a prolonged cyber espionage infrastructure campaign for China-nexus hacking groups. The Operational Relay Box (ORB) network has been codenamed LapDogs by SecurityScorecard’s STRIKE team. “The LapDogs network has a high concentration…

Read more →

A China-linked threat actor known as Mustang Panda has been attributed to a new cyber espionage campaign directed against the Tibetan community. The spear-phishing attacks leveraged topics related to Tibet, such as the 9th World Parliamentarians’ Convention on Tibet (WPCT), China’s education policy in the Tibet Autonomous Region (TAR), and a recently published book by…

Read more →

A frisson of Trump-related news fizzled out in the last week. No, not a temporary outbreak of peace in the Middle East, but news of a smartphone originally announced as being made in America. Except, since making that claim, the Trump organization has changed to somewhat more ambiguous claims. Which raises the question, why can’t you make…

Read more →

A frisson of Trump-related news fizzled out in the last week. No, not a temporary outbreak of peace in the Middle East, but news of a smartphone originally announced as being made in America. Except, since making that claim, the Trump organization has changed to somewhat more ambiguous claims. Which raises the question, why can’t you make…

Read more →

A frisson of Trump-related news fizzled out in the last week. No, not a temporary outbreak of peace in the Middle East, but news of a smartphone originally announced as being made in America. Except, since making that claim, the Trump organization has changed to somewhat more ambiguous claims. Which raises the question, why can’t you make…

Read more →

A frisson of Trump-related news fizzled out in the last week. No, not a temporary outbreak of peace in the Middle East, but news of a smartphone originally announced as being made in America. Except, since making that claim, the Trump organization has changed to somewhat more ambiguous claims. Which raises the question, why can’t you make…

Read more →

To get some sense of the speed with which we’re hurtling into dystopia, it’s always worth taking a look at Apple’s latest Transparency Report; it shows the extent to which governments are requesting information about people, the ways in which they seek it, and the scale at which the requests are made. The report itself is…

Read more →

Deeper Network Promo

A colossal data breach has reportedly exposed approximately four billion records containing personal information of hundreds of millions of users, primarily from China. The 631-gigabyte database was discovered sitting wide open on the internet, lacking even the most basic password protection, >according to cybersecurity firm Cybernews, which reported its findings based on its own research. What makes this…

Read more →

The China-linked threat actor behind the recent in-the-wild exploitation of a critical security flaw in SAP NetWeaver has been attributed to a broader set of attacks targeting organizations in Brazil, India, and Southeast Asia since 2023. “The threat actor mainly targets the SQL injection vulnerabilities discovered on web applications to access the SQL servers of…

Read more →

Meta on Thursday revealed that it disrupted three covert influence operations originating from Iran, China, and Romania during the first quarter of 2025. “We detected and removed these campaigns before they were able to build authentic audiences on our apps,” the social media giant said in its quarterly Adversarial Threat Report. This included a network…

Read more →

The Czech Republic on Wednesday formally accused a threat actor associated with the People’s Republic of China (PRC) of targeting its Ministry of Foreign Affairs. In a public statement, the government said it identified China as the culprit behind a malicious campaign targeting one of the unclassified networks of the Czech Ministry of Foreign Affairs.…

Read more →

U.S. tariffs on China caught Lenovo off-guard but the company will be faster and better at adjusting to tariff shifts than its competitors, CEO Yang Yuanqing said.

Read more →

Jensen Huang said limits on the sale of advanced chips to China had galvanized the country to push ahead with building its own AI technologies.

Read more →

Threat hunters have exposed the tactics of a China-aligned threat actor called UnsolicitedBooker that targeted an unnamed international organization in Saudi Arabia with a previously undocumented backdoor dubbed MarsSnake. ESET, which first discovered the hacking group’s intrusions targeting the entity in March 2023 and again a year later, said the activity leverages spear-phishing emails using

Read more →

Chinese telecoms equipment vendor Huawei is providing a 5G Advanced (5G-A) communications network for a fleet of 100 autonomous electric mining trucks, which have officially entered operation at the Yimin open-pit coal mine in Inner Mongolia, China.

Read more →

The plan follows the Trump administration’s recent move to tighten curbs on China’s access to Nvidia’s high-end AI chips.

Read more →

The plan follows the Trump White House’s recent move to tighten curbs on China’s access to Nvidia’s high-end AI chips.

Read more →

Cybersecurity researchers are calling attention to a new botnet malware called HTTPBot that has been used to primarily single out the gaming industry, as well as technology companies and educational institutions in China. “Over the past few months, it has expanded aggressively, continuously leveraging infected devices to launch external attacks,” NSFOCUS said in a report…

Read more →

A recently disclosed critical security flaw impacting SAP NetWeaver is being exploited by multiple China-nexus nation-state actors to target critical infrastructure networks. “Actors leveraged CVE-2025-31324, an unauthenticated file upload vulnerability that enables remote code execution (RCE),” EclecticIQ researcher Arda Büyükkaya said in an analysis published today. Targets of the campaign

Read more →

New research shows China is quickly catching up with the US in AI innovation. Experts weigh in on what it means for cyber defenders.

Read more →

The company wants to avoid appearing to attribute price increases to U.S. tariffs on goods from China, where most Apple devices are assembled.

Read more →

A China-linked unnamed threat actor dubbed Chaya_004 has been observed exploiting a recently disclosed security flaw in SAP NetWeaver. Forescout Vedere Labs, in a report published Thursday, said it uncovered a malicious infrastructure likely associated with the hacking group weaponizing CVE-2025-31324 (CVSS score: 10.0) since April 29, 2025. CVE-2025-31324 refers to a critical SAP NetWeaver…

Read more →

China’s largest chip maker reported a sharp rise in net profit, driven by Beijing’s stimulus measures and front-loading activities amid geopolitical tensions.

Read more →

Japan is being peppered with an overwhelming volume of spam, thanks to a new platform popular across the East China Sea.

Read more →

Hackers are abusing the Node Package Manager (NPM) registry — a database of JavaScript packages — to target multi-language developers with typo-squatted packages containing stealers and remote code execution (RCE) codes. According to a research by cybersecurity firm Socket, a coordinated malware campaign, with evidence of origin in China, has published dozens of malicious packages…

Read more →

Ireland’s data protection watchdog accuses the Chinese social media giant of violating GDPR with transfers of European users’ data to China

Read more →

Ireland’s data privacy watchdog fined the social-video app for failing to guarantee that user data sent to China was protected from government surveillance.

Read more →

Certain American chips are essential for cars and other industrial goods made in China—a vulnerability revealed in tariff exemptions pushed by Beijing.

Read more →

The China-linked cyber-operations group, better known as Lotus Panda, uses its own custom malware to focus on government agencies and private companies in Hong Kong, the Philippines, Taiwan, and Vietnam.

Read more →

Git configuration files exposed in public repositories are being aggressively dug up and looked into by threat actors to reveal sensitive secrets and authentication tokens unintentionally left behind in Git projects. A GreyNoise observation recorded a significant spike in search attempts for exposed Git configuration files between April 20 and April 21. “While the crawling…

Read more →

A China-aligned advanced persistent threat (APT) group called TheWizards has been linked to a lateral movement tool called Spellbinder that can facilitate adversary-in-the-middle (AitM) attacks. “Spellbinder enables adversary-in-the-middle (AitM) attacks, through IPv6 stateless address autoconfiguration (SLAAC) spoofing, to move laterally in the compromised network, intercepting packets and

Read more →

Cybersecurity researchers have revealed that RansomHub’s online infrastructure has “inexplicably” gone offline as of April 1, 2025, prompting concerns among affiliates of the ransomware-as-a-service (RaaS) operation. Singaporean cybersecurity company Group-IB said that this may have caused affiliates to migrate to Qilin, given that “disclosures on its DLS [data leak site] have doubled since

Read more →

Alibaba Group has added a new rapid-delivery feature to its shopping platform, the e-commerce giant’s latest attempt to grab a slice of China’s on-demand delivery market from rivals like JD.com and Meituan.

Read more →

A spear-phishing campaign sent Trojanized versions of legitimate word-processing software to members of the World Uyghur Congress as part of China’s continued cyber-espionage activity against the ethnic minority.

Read more →