thehackernews.com

Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API (opens in new tab)

Covers 2 stories See all stories this covers including Webworm: New burrowing techniquesCovered by kite.kagi.com

Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors that employ Discord and Microsoft Graph API for command-and-control (C2 or C&C) communications. Webworm, first publicly documented by Broadcom-owned Symantec in September 2022, is assessed to be active since at least 2022, targeting government agencies

Read the original article
Sign in to keep reading the full article.
Sign UpLog In

Covered in 1 article

In other languages

kite.kagi.com·

중국 연계 Webworm, 백도어를 사용하여 유럽 정부 기관 공격

Feeds

Keyboard Shortcuts

Navigation

Next / previous post
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Discover
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help