A group of cybercriminals linked to China, operating under the name Evasive Panda, recently carried out a series of cyber attacks targeting users within the Tibetan community. The initial attacks were detected by researchers in September of last year, highlighting the ongoing cyber conflict between China and Tibet.
These attacks focused on exploiting software supply chains and employed a tactic known as watering hole attacks. This strategy involves the hackers identifying the interests and behaviors of their target audience, compromising popular websites frequented by this audience, and injecting malicious code into them. Subsequently, when users visit these infected sites, their devices also become compromised. Such tactics are commonly utilized for spreading malware, conducting espionage, or stealing data from a specific group of victims.