UNC6384 Deploys PlugX via Captive Portal Hijacks and Valid Certificates Targeting Diplomats
The article discusses a series of attacks attributed to the threat actor UNC6384, targeting diplomats and other entities to further China's strategic interests. These attacks utilize advanced social engineering techniques, including valid code signing certificates and adversary-in-the-middle attacks, to bypass security measures.