Uptime Hamster: 1d 3h 41mDeploy: 13 Jul 2026 10:50Updated: 2026-07-14
Logo del actor de amenaza Operation Digital Eye

Operation Digital Eye

0 incidentes 0 paises 0 sectores apt CN Ultimo: -
Ver en IntelTracker → APTTrail →
Operation Digital Eye is a cyber espionage campaign that emerged in late June 2024, attributed with high confidence to a China-nexus advanced persistent threat (APT) actor. This actor's primary motivation is intelligence gathering and establishing strategic footholds within digital supply chains, leveraging access to business-to-business IT service providers to potentially compromise downstream entities. The campaign is notable for being the first observed instance of a suspected Chinese APT group abusing Visual Studio Code Remote Tunnels for command and control purposes, alongside Microsoft Azure infrastructure, to evade detection by making malicious activities appear legitimate. The exact group behind Operation Digital Eye remains unidentified due to extensive sharing of malware and operational playbooks within the Chinese threat landscape, showing overlaps with tools observed in campaigns like Operation Soft Cell and Operation Tainted Love.

Actores similares

minteyeransomware · 2apt-greyenergyactor · 1Digital Certificatesactor · 1Operation Wocaoapt · 1greyenergy-groupactor · 1greyenergy-miniactor · 1influence-operationsactor · 1Operation Ghostwriterapt · 0Garuda Eyeapt · 0Operation C-Majorapt · 0
Motivacion