China-Backed APT Group Conducts Tax-Themed Cyberattacks on India and Russia

A China-backed advanced persistent threat (APT) group conducted tax-themed cyberattacks targeting organizations in India and Russia, distributing over 1,600 socially engineered messages. The campaign delivered previously undocumented malware, including the ABCDoor backdoor and ValleyRAT, across multiple sectors. No specific dates, CVE IDs, or exact victim counts were disclosed in the attack details. The attacks leveraged phishing or malicious messaging to deploy the payloads, focusing on endpoint compromise. The primary impact involved unauthorized access and potential data exfiltration via the deployed malware strains.