A China-aligned threat actor has set its sights on European government and diplomatic organizations since mid-2025,following a two-yearperiod of minimal targeting in theregion. The campaign has been attributedto TA416, a cluster of activity that overlaps with DarkPeony, RedDelta, Red Lich, SmugX, UNC6384, and VertigoPanda. "This TA416 activity included multiple
China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing
The Hacker News - 3 Apr 2026 23:04
A China-aligned threat actor has set its sights on European government and diplomatic organizations since mid-2025,following a two-yearperiod of minimal targeting in theregion. The campaign has been attributedto TA416, a cluster of activity that overlaps with DarkPeony, RedDelta, Red Lich, SmugX, UNC6384, and VertigoPanda. "This TA416 activity included multiple
Share this Article
Comment on this Article
Recommended
Please to comment