DKnife Implant Used by Chinese Threat Actor for Adversary-in-the-Middle Attacks

A malicious implant named DKnife is being used by a Chinese threat actor to conduct Adversary-in-the-Middle attacks. The tool has been active since at least 2019 and targets desktop, mobile, and IoT devices of Chinese users. DKnife serves as a backdoor framework, allowing attackers to intercept the communications of victims.