Targeting of infrastructure projects in Indonesia, Thailand, and Vietnam

Date of report

March 2023

Affiliations

Believed to be the work of the Chinese government

A Chinese threat actor was detected targeting the strategic infrastructure projects of government organizations in Indonesia, Thailand, and Vietnam. Active since late 2022, the campaign uses spear-fishing emails for initial access and deploys the Soul malware framework once inside the network.

Suspected victims

Infrastructure projects in Indonesia, Thailand, and Vietnam

Suspected state sponsor

China

Type of incident

Espionage

Target category

Government

Victim government reaction

Unknown

Policy response

Unknown

Suspected state sponsor response

Unknown

Pandas with a soul: Chinese espionage attacks against Southeast Asian government entities

Cyber Operations Tracker

CFR.org

Topics

Regions

Explainers

Research & Analysis

Communities

Events