Tick, a Chinese intelligence-aligned actor, compromised an internal update to the servers of a data-loss prevention company in order to deliver malware within the network. Tick packaged its malware as part of legitimate installers so that the malware was eventually executed on computers of the company’s customers.
- Two customers of an East Asian data-loss prevention company
Suspected state sponsor
Type of incident
- Private sector