Alibaba Cloud LLC is a organization tracked across 2 threat clusters and 1 intelligence report mention on ThreatCluster. First observed November 19, 2025; most recent activity November 19, 2025.
The Chinese hacking group PlushDaemon has been observed using a tool named EdgeStepper to hijack legitimate software updates, redirecting traffic to malicious servers. Active since at least 2018, PlushDaemon targets…
The China-linked threat actor PlushDaemon has been exploiting a new implant named EdgeStepper to hijack software update traffic. This cyberespionage operation has targeted various organizations across the United States,…