<ul><li>MirrorFace, a Chinese state-sponsored threat actor, has shifted its tactics to engage in spear phishing attacks targeting individuals in Japan.</li><li>The group is particularly interested in Japan's national security and international relations, focusing on topics related to China-US relations.</li><li>The spear phishing emails contain lures in the form of fake documents discussing Japan's economic security from the perspective of current US-China relations.</li><li>Victims who fell for the attack were infected with two backdoors, NOODPOOR and ANEL, with the latter being dormant and not observed in campaigns since 2018.</li></ul>

MirrorFace targets Japan in fresh ANEL and NOOPDOOR spearphishing campaign

Discover more