In a sophisticated campaign, threat actor Earth Baxia, likely based in China, has targeted government organizations and industries across the Asia-Pacific (APAC) region. Leveraging spear-phishing emails and exploiting a critical vulnerability in GeoServer (tracked as CVE-2024-36401), Earth Baxia has successfully infiltrated systems and deployed customized malware to exfiltrate sensitive data. The campaign, which began in […]