Operation Ke3chang Resurfaces With New TidePool Malware

Operation Ke3chang Resurfaces With New TidePool Malware

Introduction Little has been published on the threat actors responsible for Operation Ke3chang since the report was released more than two years ago. However, Unit 42 has recently discovered the actors have continued to evolve their custom malware arsenal. We’ve discovered a new malware family we’ve named TidePool. It has strong behavioral ties to Ke3chang [...]