ToddyCat hackers use ‘disposable’ malware to target Asian telecoms

A campaign targeting government organizations and telecommunication providers in Asia, primarily in Kazakhstan, Uzbekistan, Pakistan, and Vietnam, has been discovered by cybersecurity firm, Check Point. Named “Stayin’ Alive,” the campaign, thought to originate from Chinese espionage actors ‘ToddyCat,’ uses “disposable” malware code with no clear overlaps to evade detection. The attack begins with a spear-phishing email attached with a ZIP file containing malware loadable through Audinate’s Dante Discovery software vulnerability.