Unwary Chinese Hackers Hardcoded Credentials into Backdoors
Researchers discovered a Chinese nation-state threat actor, dubbed GopherWhisper, that carelessly hardcoded command and control credentials into backdoors written in the Go programming language. The group used platforms like Slack and Discord for C2 communications, with researchers recovering over 9,000 messages that revealed details about the attackers' environment and activities.