Chinese APT ToddyCat Targets Asian Telecoms, Governments

Oct. 12, 2023
Chinese APT ToddyCat Targets Asian Telecoms, Governments
  1. Home
  2. News
  3. Chinese APT ToddyCat Targets Asian Telecoms, Governments

A new malicious espionage campaign is targeting telecommunications organizations and governments across Central and Southeast Asia, CheckPoint Research has discovered.

The campaign, which CheckPoint tracks as ‘Stayin’ Alive’, has been active since at least 2021 and is tied to the Chinese cyber espionage group ToddyCat.

The campaign leverages spear-phishing emails to deliver archived files using DLL side-loading schemes, hijacking dal_keepalives[dot]dll in Audinate’s Dante Discovery software (CVE-2022-23748).

CheckPoint also found several loaders and downloaders, some were used as initial infection vectors against high-profile Asian organizations in Kazakhstan, Uzbekistan, Pakistan, and Vietnam.

One of them, CurKeep, is deployed by running the legitimate executable, signed by Zoom, which loads dal_keepalives[dot]dll. The DLL file then loads CurKeep.

Tags:

No tags.

JikGuard.com, a high-tech security service provider focusing on game protection and anti-cheat, is committed to helping game companies solve the problem of cheats and hacks, and providing deeply integrated encryption protection solutions for games.

Explore Features>>

Top

None
What Is Anti Cheat? Unmasking the Invisible Shield of Fair Play in Gaming
May 9, 2025
None
Game Anti-Cheat Meaning: Understanding, Technologies, and Best Practices
May 9, 2025
None
Anti Cheating App: The Ultimate Guide to Game Protection in 2025
May 9, 2025
None
Anti Cheat Software Download Made Easy: Secure Your Game in Minutes
May 9, 2025
None
Unveiling the Power of Game Anticheats: How They Work, Top Solutions, and the Best Free Options
May 9, 2025

Tags

Featured BlogsTop StoriesLayoffsBlogsCultureGenerative AIFeaturesGDC 2024Horror GamesUnityUbisoftValveStaff BlogOmdia | Game Industry AnalysisGame Developer EssentialsState of the Game Industry ReportGame Developer's 2024 Wrap-Up: Top Games Devs and TrendsGame Developer CollectiveAudioDesignerSpotlight SeriesDeep Divesunity encryption[Company] UnityArtist[Company] Xbox[Company] PlayStationCooking GamesAnti-modifierGame SecurityRootRoot detectionAssetbundle encryptionGodotCareer adviceQ&A'sGameGuardianModifierAnti-RootSignature verificationUnity Hardeningab package encryptioniOS resource encryptionCECheat EngineAnti-CrackingGame Anti-HackingAnti-Hacking

Recent

None
What Is Anti Cheat? Unmasking the Invisible Shield of Fair Play in Gaming
May 9, 2025
None
Game Anti-Cheat Meaning: Understanding, Technologies, and Best Practices
May 9, 2025
None
Anti Cheating App: The Ultimate Guide to Game Protection in 2025
May 9, 2025
None
Anti Cheat Software Download Made Easy: Secure Your Game in Minutes
May 9, 2025
None
Unveiling the Power of Game Anticheats: How They Work, Top Solutions, and the Best Free Options
May 9, 2025
None
SAG-AFTRA publicly releases its proposed AI terms to end strike
May 9, 2025
None
PowerSchool Admits Ransom Payment Amid Fresh Extortion Demands
May 9, 2025
None
FBI Sounds Alarm on Rogue Cybercrime Services Targeting Obsolete Routers
May 9, 2025
None
UN Launches New Cyber-Attack Assessment Framework
May 9, 2025
None
Google Deploys On-Device AI to Thwart Scams on Chrome and Android
May 9, 2025

Popular

None
PlayStation spins out new internal studio from Bungie
May 8, 2025
None
Microsoft triumphs over FTC again in challenge to $69 billion Activision Blizzard deal
May 8, 2025
None
EA says business primed for 'accelerated growth' following layoffs
May 8, 2025
None
Nintendo expects the Switch 2 to sell 15 million units in nine months
May 8, 2025
None
Tripledot to acquire AppLovin mobile studio portfolio for $800 million
May 8, 2025
None
Hacker Finds New Technique to Bypass SentinelOne EDR Solution
May 8, 2025
None
#Infosec2025: Combating Deepfake Threats at the Age of AI Agents
May 8, 2025
None
Confusion Reigns as Threat Actors Exploit Samsung MagicInfo Flaw
May 8, 2025
None
UK Launches New Cybersecurity Assessment Initiatives to Drive Secure by Design
May 8, 2025
None
UK Cyber Essentials Certification Numbers Falling Short
May 8, 2025

Random

None
Just 5% of Enterprises Have Deployed Quantum-Safe Encryption
May 8, 2025
None
#Infosec2025: Combating Deepfake Threats at the Age of AI Agents
May 8, 2025
None
Mastering String Encryption: Protect Your Games from Hackers
May 7, 2025
None
Game Anti-Cheat Meaning: Understanding, Technologies, and Best Practices
May 9, 2025
None
Inside DragonForce, the Group Tied to M&S, Co-op and Harrods Hacks
May 6, 2025
None
Google Deploys On-Device AI to Thwart Scams on Chrome and Android
May 9, 2025
None
UK Cyber Insurance Claims Second Highest on Record
May 7, 2025
None
UK Government Warns Retail Attacks Must Serve as a “Wake-up Call”
May 7, 2025
None
Darcula Phishing as a Service Operation Snares 800,000+ Victims
May 6, 2025
None
Nintendo expects the Switch 2 to sell 15 million units in nine months
May 8, 2025

Most Views

None
UK Government Warns Retail Attacks Must Serve as a “Wake-up Call”
May 7, 2025
None
NSO Group Hit with $168m Fine for WhatsApp Pegasus Spyware Abuse
May 7, 2025
None
Passkeys Set to Protect GOV.UK Accounts Against Cyber-Attacks
May 7, 2025
None
DDoS-for-Hire Network Dismantled in International Operation
May 7, 2025
None
"Nationally Significant" Cyber-Attacks Have Doubled, UK’s NCSC Reports
May 7, 2025
None
Inferno Drainer Returns, Stealing Millions from Crypto Wallets
May 7, 2025
None
UK’s NCSC Offers Security Tips as Co-op Confirms Data Loss
May 6, 2025
None
Darcula Phishing as a Service Operation Snares 800,000+ Victims
May 6, 2025
None
Inside DragonForce, the Group Tied to M&S, Co-op and Harrods Hacks
May 6, 2025
None
Smishing Triad Upgrades Tools and Tactics for Global Attacks
May 6, 2025