It's not much but here's Crowdstrike's list of Chinese APTs
GOBLIN PANDA
WICKED PANDA
HAMMER PANDA
DEEP PANDA
NUMBERED PANDA
STONE PANDA
STALKER PANDA
HAMMER stands out.
It's not much but here's Crowdstrike's list of Chinese APTs
GOBLIN PANDA
WICKED PANDA
HAMMER PANDA
DEEP PANDA
NUMBERED PANDA
STONE PANDA
STALKER PANDA
HAMMER stands out.
Anyone want to bet the 'Foreign Entity' is the UK/Mossad? Or China?
The tech was, presumably, sold 'pay for play' to China – so why would they want to implicate themselves by 'picking up the goods' through hacking a trivially protected server, which was of course well within their capabilities. Do 'buyers' agree to do that sort of thing? As a favour?