NightEagle APT Exploits Microsoft Exchange Zero‑Day to Spy on China’s Tech and Military

Sunday, 20 July

Monday, 7 July, 2025

NightEagle APT Exploits Microsoft Exchange Zero‑Day to Spy on China’s Tech and Military

Security researchers have uncovered NightEagle (aka APT‑Q‑95), a new advanced persistent threat targeting Microsoft Exchange zero-days. Active since 2023, it injects a custom .NET loader into Exchange IIS, steals machineKey, deserializes servers, and accesses mailboxes. Leveraging Go-based Chisel for intranet penetration, it focuses on China’s government, military, AI, quantum, semiconductors, and defense sectors—operating stealthily by night and rapidly swapping infrastructure.

Read full story at The Hacker News

Tags:microsoft semiconductors

Categories

NightEagle APT Exploits Microsoft Exchange Zero‑Day to Spy on China’s Tech and Military

Also Read

OpenAI Partners with Google Cloud to Scale AI Compute Capacity

IBM Launches Agentic AI Innovation Center in Bengaluru to Power Enterprise AI Agents

Trump Signs GENIUS Act, Creating First U.S. Stablecoin Framework

Perplexity AI Eyes Mobile Dominance by Pre-Installing Comet AI Browser with OEMs

Reliance Launches Ajio Rush for 4‑Hour Fashion Delivery Amid Quick Commerce Boom

Microsoft to Sign EU AI Code of Practice as Meta Opts Out, Splitting Big Tech

IIT Students Tape Out 8 Chipsets, Sent to Fabs Under India Semiconductor Push

xAI’s Grok Teased with Meme Generator Feature—“Something Very Cool Is Brewing”

Microsoft to Embrace EU AI Code of Practice, While Meta Opts Out Over Legal Concerns

Subscribe To Our Newsletter.