The Hacker News

CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems

CISA details China-linked BRICKSTORM malware that enables persistent, stealthy access in VMware and Windows systems.
Cyber Daily

Unveiling Warp Panda, a speedy new Chinese threat actor targeting VMware environments

China-nexus hacking group observed maintaining long-term access and deploying BRICKSTORM malware on compromised servers.