ToddyCat hackers use ‘disposable’ malware to target Asian telecoms

Chinese hacker group, ToddyCat, has been targeting Asian governments and telecoms service providers since 2021 with advanced malware named “Stayin’ Alive”. The attack begins with a spear-phishing email, urging specific individuals to open an attached ZIP file containing malware, including a backdoor that establishes persistence on the device. Additional payloads used in the attack are unique and varied. The majority of the campaign’s targets are located in Kazakhstan, Uzbekistan, Pakistan, and Vietnam.