China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

Updated on January 30, 2026

Cybersecurity researchers have discovered a new campaign attributed to a China-linked threat actor known as UAT-8099 that took place between late 2025 and early 2026.
The activity, discovered by Cisco Talos, has targeted vulnerable Internet Information Services (IIS) servers located across Asia, but with a specific focus on targets in Thailand and Vietnam. The scale of the campaign is currently…

Read the rest of the story at Read More

Source: The Hacker News

December 29, 2023 Uncategorized

Microsoft Disables MSIX App Installer Pr...

November 30, 2023 Uncategorized

Google Unveils RETVec – Gmail̵...

March 11, 2025 Uncategorized

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

Related posts

Microsoft Disables MSIX App Installer Pr...

Google Unveils RETVec – Gmail̵...

Steganography Explained: How XWorm Hides...

Leave a Comment Cancel reply

Recent News

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

[Webinar] The Smarter SOC Blueprint: Learn What to Build, Buy, and Automate

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

When Cloud Outages Ripple Across the Internet

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos