UNC6508 PRC-nexus medical & defense research espionage campaign
Google's Threat Intelligence Group disclosed that PRC-nexus actor UNC6508 spent more than a year inside U.S. and Canadian medical, academic and military-health research environments, compromising legacy REDCap servers, deploying custom INFINITERED malware and abusing Google Workspace email compliance rules to silently exfiltrate research and defense data.
- Victim
- U.S. and Canadian medical, academic and military-health research institutions