Poisoned Waters:

Dive into APT24’s Multi-Pronged BADAUDIO Espionage Campaign

This talk offers a look into a sophisticated, multi-pronged espionage campaign by APT24, a China-nexus threat actor, primarily targeting a wide range of sectors in Taiwan. The operation has used strategic web compromises and a supply chain attack that compromised a Taiwanese marketing firm, affecting over 1,000 downstream domains. The research analyzes the BADAUDIO downloader malware, concluding with key takeaways for detection and defense.