Antlion: Chinese APT Uses Custom Backdoor to Target Financial Institutions in Taiwan
released on 2022-02-03 @ 02:57:03 PM
Chinese state-backed advanced persistent threat (APT) group Antlion has been targeting financial institutions in Taiwan in a persistent campaign over the course of at least 18 months.
The attackers deployed a custom backdoor we have called xPack on compromised systems, which gave them extensive access to victim machines.