ThreatCluster

Spearphishing Campaign Deploys AZUREVEIL C2 Agent Targeting Czech Republic and Taiwan

First seen 2 Jun 2026, 10:54 UTC GbhackersCybersecuritynews 83% similarity 73

Article Content

Browse articles
ThreatCluster

A spearphishing campaign has been identified deploying the AZUREVEIL Adaptix C2 agent, targeting government officials, researchers, and technology workers in the Czech Republic and Taiwan. The campaign, attributed to a China-linked threat actor, began with the delivery of malicious ZIP archives disguised as official documents. The earliest known sample was traced back to Taiwan in March 2026, indicating a multi-stage attack chain. The operation is named Operation Dragon Weave and is part of a broader trend of state-sponsored cyber activities. The attack's sophistication and targeted nature raise significant concerns for national security and data integrity in the affected regions.

Key Points: • AZUREVEIL is a sophisticated Adaptix-based C2 agent deployed via spearphishing. • The campaign targets government and enterprise sectors in the Czech Republic and Taiwan. • It is linked to a China-based threat actor and began with malicious ZIP files in March 2026.

ThreatCluster AI

Timeline

2026-03-01
Earliest known AZUREVEIL sample identified
Threat researchers traced the first sample of AZUREVEIL to Taiwan, marking the start of the campaign.
Cybersecuritynews
2026-06-02
Spearphishing campaign reported
Gbhackers reported on the ongoing spearphishing campaign targeting government and enterprise sectors in the Czech Republic and Taiwan.
Gbhackers

Community

Browse all →