Google Uncovers APT41’s Use of Open Source GC2 Tool to Target Media and Job Sites

Chinese hackers known as HOODOO used Google’s infrastructure to target a Taiwanese media outlet by delivering a tool called Google Command and Control. Victims received phishing emails containing links to a password-protected file hosted on Google Drive, which then loaded malware to conduct data exfiltration. This indicates a greater reliance on publicly available tools for cybercrime and a growing use of Go-based malware due to its cross-platform compatibility.