A China-nexus threat actor known as UAT-7290 has been
attributed to espionage-focused intrusions against entities in
South Asia and Southeastern Europe. The activity cluster, which has
been active since at least 2022, primarily focuses on extensive
technical reconnaissance of target organizations before initiating
attacks, ultimately leading to the deployment of malware families
such as RushDrop
Read more https://thehackernews.com/2026/01/china-linked-uat-7290-targets-telecoms.html
