Two Chinese government threat actors used a number of zero-day vulnerabilities in common Japanese software to target Japanese organizations over the course of several years.