UAT-8302 — China-nexus APT targeting government entities in South America and southeastern Europe

actor · actor:UAT-8302

Coverage timeline

first 2026-05-06 → last 2026-05-06

Briefs

1 distinct

Sources cited

2 hosts

Sections touched

research

Co-occurring entities

no co-occurrence

Story timeline

2026-05-06CTI Daily Brief — 2026-05-06
researchFirst coverage. Long-term government espionage; South American govts since late 2024; southeastern European govt agencies 2025; extensive toolset including NetDraft, CloudSorcerer, SNOWLIGHT, Deed RAT, Zingdoor, Draculoader; shared quartermaster links to multiple Chinese APT clusters.

Where this entity is cited

research1

Source distribution

blog.talosintelligence.com1 (50%)
thehackernews.com1 (50%)

All cited sources (2)

Items in briefs about UAT-8302 — China-nexus APT targeting government entities in South America and southeastern Europe

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.