Storia in 9 fonti

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

Google says UNC6508 used REDCap backdoors and Workspace rules to copy research and defense emails across U.S. and Canadian networks.

Raccontata dableepingcomputer.comtheregister.comsecurityweek.comeconomictimes.indiatimes.comdarkreading.comthehackernews.comthenextweb.comrappler.comsilicon.co.uk

Confronto fonti

6 prospettive sulla stessa storia

AI · summaries

thehackernews.comStai leggendo2 g fa

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

UNC6508 harvested research emails from hospitals and universities using weaponized Google Workspace rules targeting ~150 keywords. Native mail rules abuse requires admin access only—IT leaders must audit email-forwarding settings and segment privileges.

originale

thenextweb.com2 g fa

A built-in Google Workspace feature became a Chinese espionage group's favourite exfiltration tool

UNC6508 weaponised Google Workspace email rules (150+ keywords) to steal defence data from REDCap servers. Managers must audit email rules and enforce phishing-resistant MFA: legitimate features enable data theft once admin access falls.

Leggi questa versione → originale

bleepingcomputer.com3 g fa

Chinese hackers breach REDCap servers, steal medical research

A China-linked espionage campaign targeted exposed REDCap servers to deploy the InfiniteRed malware and steal sensitive data from a medical institution in North America.

Leggi questa versione → originale

rappler.com2 g fa

Chinese-linked hackers targeted US, Canadian research facilities for a year – Google

Google attributes the campaign to a hacking group it calls UNC6508, a relatively new and little-known cyberespionage player

Leggi questa versione → originale

theregister.com3 g fa

PRC-linked spies hid inside medical and military networks for more than a year, snooping through Gmail and…

Google says the intruders were on the hunt for everything from drone tech to pathogens

Leggi questa versione → originale

darkreading.com3 g fa

China-Nexus Actor Spied on US Researchers Undetected for a Year

China-linked UNC6508 infiltrated US research institutions for over a year via RedCAP malware, stealing credentials and exfiltrating sensitive data. Novel data exfiltration bypassing traditional security controls signals escalating sophistication—critical alert for research security and AI/biotech team access governance.

Leggi questa versione → originale

Timeline cronologica

1. lunedì 15 giugno 2026·bleepingcomputer.com
   

   Chinese hackers breach REDCap servers, steal medical research

   A China-linked espionage campaign targeted exposed REDCap servers to deploy the InfiniteRed malware and steal sensitive data from a medical institution in North America.

2. lunedì 15 giugno 2026·theregister.com
   

   PRC-linked spies hid inside medical and military networks for more than a year, snooping through Gmail and stealing data

   Google says the intruders were on the hunt for everything from drone tech to pathogens

3. lunedì 15 giugno 2026·securityweek.com
   

   Chinese Hackers Target Medical, Military, and AI Research in North America

   Google has published an analysis of the attacks carried out by UNC6508, a cyberespionage group linked to the Chinese government.

4. lunedì 15 giugno 2026·economictimes.indiatimes.com
   

   Chinese-linked hackers targeted US, Canadian research facilities for a year: Google - The Economic Times

   A Chinese-linked hacking group secretly stole data from U.S. and Canadian academic, medical, and military research institutions. The cyberespionage campaign lasted over a year.…

5. lunedì 15 giugno 2026·darkreading.com
   

   China-Nexus Actor Spied on US Researchers Undetected for a Year

   Google discovered and disrupted the sprawling campaign, which stole RedCAP credentials and exfiltrated data by abusing content-compliance rules.

6. lunedì 15 giugno 2026·thehackernews.com
   

   Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

   Google says UNC6508 used REDCap backdoors and Workspace rules to copy research and defense emails across U.S. and Canadian networks.

7. lunedì 15 giugno 2026·thenextweb.com
   

   A built-in Google Workspace feature became a Chinese espionage group's favourite exfiltration tool

   A China-linked group backdoored REDCap servers at US and Canadian medical and military research institutions, then used Google Workspace to exfiltrate email.

8. martedì 16 giugno 2026·rappler.com
   

   Chinese-linked hackers targeted US, Canadian research facilities for a year – Google

   Google attributes the campaign to a hacking group it calls UNC6508, a relatively new and little-known cyberespionage player

9. martedì 16 giugno 2026·silicon.co.uk
   

   China-Linked Hackers Stole Data For More Than A Year | Silicon

   Google security researchers uncover alleged China-linked group that exfiltrated messages from research institutions for months