TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
View original
The Hacker News avatar

TGINSIGHT POST

Post #8318

@thehackernews

The Hacker News

Views11,300Post view count
PostedJan 3001/30/2026, 12:09 PM
Post content

Post content

China-linked UAT-8099 targets IIS servers in Asia using BadIIS SEO malware. The group broke into vulnerable IIS servers, mainly in Thailand and Vietnam, using web shells and PowerShell. The aim remains SEO fraud, now tuned by region. 🔗 Read → https://thehackernews.com/2026/01/china-linked-uat-8099-targets-iis.html