Silver Fox is a apt_group tracked across 14 threat clusters and 24 intelligence report mentions on ThreatCluster. First observed December 2, 2025; most recent activity June 17, 2026.
The Cybersecurity and Infrastructure Security Agency (CISA) has mandated that U.S. federal agencies patch a critical vulnerability in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-1340, by April 11, 2026.…
The Silver Fox threat group, linked to China, has initiated a new cyber campaign targeting businesses and individuals in Asia. This campaign employs deceptive tactics, including fake tax audit notifications and…
The Silver Fox cyber threat group is conducting a targeted spearphishing campaign against Japanese businesses, particularly manufacturers, during the annual tax filing and corporate restructuring season. The attackers…
A new malware campaign linked to the Silver Fox APT group has been identified, utilizing a fake Chinese language pack installer for Telegram to deliver ValleyRAT, a sophisticated remote access trojan. The malicious MSI…
The Silver Fox APT group has launched a campaign targeting users in China by distributing malware through fake installers of popular applications, including Microsoft Teams. The malware, known as ValleyRAT, employs…
Silver Fox APT is conducting targeted attacks in Taiwan utilizing DLL sideloading and BYOVD techniques to deploy Winos 4.0 (ValleyRat). The campaigns leverage localized phishing lures related to tax and e-invoice…
A Chinese state-linked hacking group, Silver Fox (Void Arachne), is conducting a campaign that mimics Microsoft Teams downloads to mislead users into believing Russian attackers are responsible. This operation targets…
NCC Group has reported on the Silver Fox advanced persistent threat group, revealing four security vulnerabilities in a Johnson Controls wireless building security protocol. The research highlights an exposed web panel…
Chinese authorities have arrested 67 suspects linked to the Silver Fox cybercrime group, which primarily targeted Chinese-speaking users. The arrests occurred across five provinces, including Zhejiang, Jilin, Shandong,…
A malware campaign has been identified where the Silver Fox APT group is distributing trojanized installers for popular applications such as Telegram, WinSCP, Google Chrome, and Microsoft Teams. This campaign delivers…