Targeting of companies in Hong Kong
Date of report
  • October 2022
Winnti Umbrella targeted government organizations in Hong Kong with malware to steal sensitive data from victims. The attacks are likely an expansion of Operation CuckooBees, previously documented in May 2022, which targeted businesses' networks in the United States and Europe to steal intellectual property.
Suspected victims
  • Technology and manufacturing companies in Hong Kong
Suspected state sponsor
  • China
Type of incident
  • Espionage
Target category
  • Private sector
Victim government reaction
  • Unknown
Policy response
Suspected state sponsor response