Nation-stateJun 15, 2026
China-Nexus Actor Spy on US Researchers Undetected for a Year
China-nexus actor stole RedCAP credentials to spy on US researchers.
Summary
Google has uncovered a year-long espionage campaign orchestrated by a China-nexus actor. The campaign specifically targeted US researchers by stealing RedCAP credentials, allowing the attackers to exfiltrate sensitive data undetected from numerous institutions.
Indicators of Compromise
- malware — REDCap
Entities
China-nexus actor (threat_actor)Google (vendor)REDCap (technology)