Targeting of Asian government agencies and certificate authorities
Date of report
  • November 2022
Chinese-affiliated APT Thrip compromised a digital certificate authority in an Asian country. Thrip likely used the certificates to sign malware used to target government agencies for the last six months.
Suspected victims
  • Asian government agencies and one certificate authority
Suspected state sponsor
  • China
Type of incident
  • Espionage
Target category
  • Government
Victim government reaction
  • Unknown
Policy response
Suspected state sponsor response