Strategic Cyber Threat Intelligence Analyst @esetresearch.bsky.social // Research Fellow at Chaire Raoul-Dandurand en études stratégiques et diplomatiques (UQAM) // At the confluence of cyber & geopolitics
Alexis Rapin
Loading...
Isn’t heartwarming to realize that Western YouTubers and travel Instagrammers visiting China to help push CCP narratives are treated like dangerous subversives and silently surveilled, just like everybody else?
www.smh.com.au/world/asia/t...
Considérant que le renseignement 🇩🇪 a mis en garde contre le recrutement chinois via LinkedIn dès 2017, les 🇺🇸 et la 🇫🇷 dès 2018, je serai curieux de savoir ce qui précipite ce communiqué conjoint maintenant… (Spoiler: je soupçonne qu’un des 5 Eyes s’en est fait passer une)
Entirely possible, but on the other hand, few people realize how much the baddies hack their supposed friends on a regular basis. China hacks 🇷🇺, Russia hacks all central Asia, North Korea hacks 🇨🇳… Ideological alignment rarely means mutual trust for these guys. www.theguardian.com/politics/202...
Allison est aux 2020’s ce que Huntington fut aux 2000’s : un type ayant atteint la gloire pour un ouvrage publié dans les 70’s et qui, bien reposé sur ses lauriers intellectuels, est venu prendre en otage le sujet chaud du moment avec une grande théorie fumeuse (on notera, 2 Harvardiens btw…)
Ok then I guess no one in Moscow will flinch if the EU designates Sandworm as a terrorist organization for NotPetya and the like, right?
Back in 2022, I participated in a research project where (among other things) we warned about the potential use of sexually explicit deepfakes for foreign interference purposes. Back then, some readers felt our scenario was a bit far-fetched. 4 years later… 👇🏼 www.newsweek.com/for-exposing...
Our new APT Activity Report is out, highlighting some cyber espionage campaigns we’ve observed in recent months. Among the interesting stories:
- FamousSparrow (🇨🇳-aligned) targeting the Venezuelan gov. just after US raid
- Andariel (🇰🇵) targeting an engineering company involved in the nuclear sector
#ESETresearch released its latest APT Activity Report (Oct 2025–Mar 2026): 🇨🇳China-aligned groups focused on Venezuela, Gulf states, and AI & robotics industry in 🇰🇷South Korea, while 🇰🇵North Korea-aligned APTs targeted the nuclear sector. Full report: web-assets.esetstatic.com/wls/en/paper...
We’ve observed a new cyber espionage campaign by the 🇰🇵 APT ScarCruft. The group compromised a gaming platform mostly used in the Yanbian region, a Chinese prefecture bordering the DPRK. We believe the operation likely targeted refugees who crossed into China. www.welivesecurity.com/en/eset-rese...
Pour la toute 1ère fois, un hacker affilié au renseignement chinois (MSS) va être extradé vers les 🇺🇸. 13 ans après le premier acte d’inculpation contre le cyber-espionage chinois (le cas APT1), la justice US met enfin la main sur un pirate en chair et en os.
www.reuters.com/world/china/...
ESET researchers have investigated an ongoing attack by the ScarCruft APT group that targets the Yanbian region via backdoor-laced Windows and Android games.
www.welivesecurity.com
Alexis Rapin
Alexis Rapin
The Italian government has decided to extradite a Chinese man wanted by U.S. authorities on hacking charges that include stealing COVID-19 medical research, a person with direct knowledge of the mat...
Breaking news: The U.S. and other nations in the Five Eyes intelligence partnership — the U.K., Canada, Australia and New Zealand — jointly warned that China is using LinkedIn and other platforms to pry secret information from security professionals.
the "Thucydides Trap" shows how bad history can succeed if it serves a purpose
Russia's Supreme Court will consider designating Belarusian Cyber Partisans & Silent Crow extremist organizations—the 1st time extremism legislation might be applied to cyber actors
This is likely because of the attack on Aeroflot claimed by both groups
www.rbc.ru/rbcfreenews/...
