Billbug espionage group deploys new tools in Southeast Asia

A wide-ranging cyber-espionage campaign targeting multiple critical sectors in Southeast Asia has been attributed to the China-linked group Billbug.

According to Symantec, the attacks, which spanned from August 2024 to February 2025, impacted a government ministry, an air traffic control authority, a telecoms operator and a construction company, all located in a single Southeast Asian country.

Additional intrusions were recorded against a news agency in one neighboring nation and an air freight company in another.

Read more at Infosecurity Magazine