Asia-based cyberespionage campaign breaches governments worldwide and expands reconnaissance

February 6, 2026 at 03:14 PM

•

1 min read

•Source: The Record from Recorded Future News

Asia-based cyberespionage campaign breaches governments worldwide and expands reconnaissance — Photo: The Record from Recorded Future News

TL;DR Summary

Palo Alto Networks Unit 42 reports an Asia-based cyberespionage group compromised at least 70 institutions across 37 governments and conducted reconnaissance in 155 countries. The attackers used phishing to drop a Cobalt Strike payload and a mix of exploits to gain footholds, with some victims accessed for months (including a parliament and key ministries). The operation is described as potentially the most widespread state-sponsored government breach since SolarWinds, with the group adapting to different targets and events and attribution to a specific country not determined.

Topics:world #cyberespionage #governments #nation-state #palo-alto-networks #technology #unit-42

Share this article

Researchers uncover vast cyberespionage operation targeting dozens of governments worldwide The Record from Recorded Future News
The Shadow Campaigns: Uncovering Global Espionage Unit 42
Hackers Hit Sensitive Targets in 37 Nations in Vast Spying Plot Bloomberg
Hackers breach 37 countries in ongoing espionage campaign Axios
Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities The Hacker News

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 4 min read

Condensed

88%

729 → 85 words

Want the full story? Read the original article

Read on The Record from Recorded Future News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights