Multiple threat actors compromised and exploited eleven websites that published news and cultural information related to the Uighur populations in China, particularly the East Turkestan region. The threat actors imitated the domains of Google, the Turkistan Times, and the Uyghur Academy, and used Google applications to gain access to Gmail accounts. Among other sensitive details collected were the hacked devices’ unique identification numbers, phone numbers, locations, central processing unit (CPU) data, and usernames.