The Chinese-linked threat group Ink Dragon exploits vulnerabilities in IIS servers to create a stealthy global espionage network. Initially focused on Southeast Asia and South America, their attacks have now spread to European governments, using compromised servers to relay attack traffic and gather intelligence.

The Czech Republic's National Cyber and Information Security Agency (NÚKIB) has issued a warning about the potential threats posed by Chinese espionage to the country's critical infrastructure. The agency emphasized the need for businesses and organizations to enhance their cybersecurity measures to protect against these risks.

Kaspersky uncovered a cyber espionage campaign dubbed Operation ForumTroll, where sophisticated phishing emails led to infections via a zero-day exploit in Google Chrome. The malware identified, known as "Dante," was traced back to the Italian company Memento Labs and utilized advanced techniques to bypass browser security measures, highlighting ongoing vulnerabilities in web applications.