Seqrite Labs has identified a novel cyber espionage campaign, dubbed Operation Dragon Weave, targeting government officials and private citizens in the Czech Republic and Taiwan. The operation employs spear-phishing emails with ZIP attachments to deploy an AdaptixC2 agent, a command-and-control tool.
The campaign spans multiple vulnerable sectors, including government, research, academic, technology, and financial services. While Seqrite Labs did not provide a specific CVSS score or number of affected systems, the broad targeting suggests a high-severity espionage threat.
Attackers rely on social engineering through laced email attachments. Once the AdaptixC2 agent is installed, it provides attackers with remote access to compromised networks. No specific indicators of compromise have been publicly detailed yet.
Organizations in targeted sectors should enhance email filtering and user awareness training regarding suspicious attachments. Patches or specific vendor mitigations have not been announced; network monitoring for unusual AdaptixC2 traffic is advised.
Seqrite Labs attributes the operation to China-aligned groups, though attribution details remain thin. The campaign underscores ongoing state-linked cyber espionage against geopolitical rivals and allies.