The new hacking group has added a customized version of the “Symatic Cobalt Strike” loader to their arsenal
A previously unknown APT (advanced persistent threat) group calling itself ‘Earth Longzhi’ targets organizations in East Asia, Southeast Asia, and Ukraine. The threat actors have been operational since at least 2020, using custom versions of Cobalt Strike loader plants to plant persistent backdoors on victim employees’ devices. Earth Longzhi’s older campaign Trend Micro’s report