Uat-5918 targets critical infrastructure entities in taiwan

Intel Name: Uat-5918 targets critical infrastructure entities in taiwan

Date of Scan: March 21, 2025

Impact: Medium

Summary:
UAT-5918 is an advanced persistent threat (APT) group targeting entities in Taiwan, aiming to establish long-term access by exploiting N-day vulnerabilities in unpatched web and application servers. The group uses a range of open-source tools for network reconnaissance and manual post-compromise activities, primarily focused on information theft. They deploy web shells, harvest credentials, create administrative accounts, and use RDP for lateral movement. Key tools include FRPC, Mimikatz, and Impacket, with a focus on compromising critical infrastructure in Taiwan.

More Details