Chinese Cybercrime Group in Spotlight for Record Campaign Pace

Relying on social engineering, the hacking group engages in credential phishing, malware distribution, and fraud activities. The post Chinese Cybercrime Group in Spotlight for Record Campaign Pace appeared first on SecurityWeek .

According to SecurityWeek and Proofpoint, TA4922 is a Chinese-speaking financially motivated cybercrime group running a very high volume of targeted campaigns using social engineering to conduct credential phishing, malware distribution, and various forms of fraud.[1][5] These campaigns increasingly abuse legitimate tools (e.g., remote management software, cloud hosting, and business-process-themed lures) to gain and maintain remote access for data theft, fraud, and potential access resale.[1] From a CyberSE.AI perspective, such tactics are likely to be repurposed against AI-enabled business workflows and AI agents that process email, messages, invoices, or HR data, creating risks of account takeover, data exfiltration, and business process fraud via compromised AI-integrated systems. Organizations should apply Continuous AI Red Teaming to emulate TA4922-style phishing and malware delivery paths against AI agents and pipelines, validating that controls can detect and contain credential theft, tool abuse, and fraudulent transaction attempts before they reach production AI workloads.