Targeting of Rostec
Date of report
  • May 2022
  • Believed to be the work of the Chinese government
A Chinese threat actor targeted two research institutes run by Rostec, a major Russian state-owned defense conglomerate. The attackers used spear-phishing lures to plant malware and steal data on Russian radar and electronic warfare capabilities.
Suspected victims
  • Two research institutes run by Rostec
Suspected state sponsor
  • China
Type of incident
  • Espionage
Target category
  • Government
Victim government reaction
  • Unknown