Silver Dragon Expands APT41 Playbook with Google Drive C2 Operations

The APT group Silver Dragon, linked to the China-associated APT41, has been targeting government entities in Europe and Southeast Asia since mid-2024. The group gains initial access through server exploits and phishing campaigns, deploying Cobalt Strike and leveraging Google Drive for command-and-control (C2) operations. Check Point researchers identified the threat actor’s expanded tactics, though no specific CVEs or additional technical indicators were disclosed. The attacks focus on government infrastructure, though the exact impact remains unspecified.