[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fEGlvbNUJs344zF1ip-Dn_WiuYnJnef50io2By-1IUH4":3},{"article":4,"iocs":44},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":24,"category":25,"article_tags":28},"62bdd668-26d3-4dc9-8085-e41cb4969f51","China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions","china-linked-uat-8302-targets-governments-using-shared-apt-malware-across-region-c4a2a3","A sophisticated China-nexus advanced persistent threat (APT) group has been attributed to attacks targeting government entities in South America since at least late 2024 and government agencies in southeastern Europe in 2025. The activity is being tracked by Cisco Talos under the moniker UAT-8302, with post-exploitation involving the deployment of custom-made malware families that have been put","Cisco Talos has attributed a sophisticated China-nexus APT group tracked as UAT-8302 to attacks against government entities in South America since late 2024 and southeastern Europe in 2025. The threat actor deploys custom-made malware families during post-exploitation phases. The campaign demonstrates sustained targeting of government agencies across multiple geographic regions.","China-linked APT UAT-8302 targets South American and Southeast European governments with custom malware.",null,"https:\u002F\u002Fthehackernews.com\u002F2026\u002F05\u002Fchina-linked-uat-8302-targets.html","https:\u002F\u002Fblogger.googleusercontent.com\u002Fimg\u002Fb\u002FR29vZ2xl\u002FAVvXsEhcz8_PjYKknoot4F_PnjDZ7F1HhyphenhyphenIATFohYVF1OQYLSUFwiOPknnFF3ShgQKtKtfOEUbwUcfB-xhQAbi3dBsUvKki_ooKqYmQR3KfzcC1U443sR89JlLu5oPDJcEz9GXfEo5GwtMNj8s7HGg5-qsaR0sqqkSOUBsNFcqrz9NPDPyU6lQNl2RRtADTFzK0f\u002Fs1600\u002Fchinese-hackers-2.jpg","2026-05-05T14:19:00+00:00","2026-05-05T16:00:23.235074+00:00",8,[18,21],{"name":19,"type":20},"UAT-8302","threat_actor",{"name":22,"type":23},"Cisco Talos","vendor","6cbdd207-aaa1-4176-9534-e156b125e917",{"id":24,"icon":11,"name":26,"slug":27},"Nation-state","nation-state",[29,34,39],{"category":30},{"id":31,"icon":11,"name":32,"slug":33},"89f78b1c-3503-45a1-9fc7-e23d2ce1c6d5","Malware","malware",{"category":35},{"id":36,"icon":11,"name":37,"slug":38},"c5eccf7c-abbc-4bd3-bbed-e6da5cba8e73","Incident Response","incident-response",{"category":40},{"id":41,"icon":11,"name":42,"slug":43},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[]]