A previously undocumented China-linked espionage cluster, tracked as OP-512, has been caught deploying a purpose-built web shell framework against Internet Information Services (IIS) servers. ReliaQuest identified and validated the cluster after its Agentic AI correlated dozens of low-fidelity events across a customer environment into a single high-priority incident at machine speed. The compromised server running Windows Server 2016 with end-of-life .NET […]
The post China-Linked Group Deploys Custom ASPX and ASHX Web Shells appeared first on Cyber Security News.