The Hacker News · Jun 4, 2026 12:22 UTC

China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africa

Summary

A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target European organizations in the U.K., Germany, Italy, and South Africa. These efforts have been complemented by a "rapid operational tempo" and a continually evolving malware arsenal comprising known families like ValleyRAT (aka Winos 4.0) and Atlas RAT (aka AtlasCross RAT), as well as previously

Original reporting

Open original source

Related coverage

Read full article on The Hacker News

China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africa

Original reporting

Related coverage

Armenia faces Russian disinformation as it pivots toward EU

Race tied between left- and right-wing rivals in Peru’s presidential vote

Portuguese minister warns European defense may lose efficiency without US

Meta Blocks NSO Group's New WhatsApp Phishing Attack, Files Contempt Order

Germany loses UN Security Council seat bid

Several EU countries push to resume Russia dialogue in OSCE