CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems
BRICKSTORM is a Golang backdoor used by PRC-linked threat actors to maintain stealthy, long-term access to VMware vSphere and Windows systems via diverse C2 protocols.
China is using advanced 'Brickstorm' malware against government and IT orgs, US assesses
China-linked hackers use Brickstorm malware to infiltrate government agencies, technology companies, and VMware-hosted cloud environments for long-term espionage and potential sabotage.
