Targeting of an unnamed company in East Asia

Date of report

June 2024

Affiliations

Velvet Ant

Velvet Ant is reported to have targeted an unnamed company in East Asia by infiltrating the company’s network through specific legacy appliances. Cybersecurity company Sygnia reported that Velvet Ant transferred its access to the network across devices in real time as it worked to remove access.

Suspected victims

An unnamed company in East Asia

Suspected state sponsor

China

Type of incident

Espionage

Victim government reaction

Unknown

Policy response

Unknown

China-Nexus Threat Group 'Velvet Ant' Abuses F5 Load Balancers for Persistence
China-Linked Hackers Infiltrate East Asian Firm for 3 Years Using F5 Devices

Cyber Operations Tracker

CFR.org

Topics

Regions

Explainers

Research & Analysis

Communities

Events