Winnti APT41 Targets Japanese Firms in RevivalStone Cyber Espionage Campaign Winnti’s RevivalStone campaign exploited an ERP SQL flaw to deploy upgraded malware, breaching an MSP and infecting multiple firms.

A new cyber espionage campaign #RevivalStone, attributed to the #Chinese #WinntiGroup, is targeting the #Japanese manufacturers, materials & energy sectors, by leveraging sophisticated tools like #DEATHLOTUS & #UNAPIMON to infiltrate & control enterprise systems.

🔗 thehackernews.com/2025/02/winn...