Chinese Cybercrime Group TA4922 in Spotlight for Record Campaign Pace

TA4922 launches credential phishing and malware campaigns targeting Japan, Taiwan, Korea, Singapore, India, UK, Germany, Italy, and South Africa. The group uses HR, payroll, tax, and invoicing themes to lure victims into clicking malicious links or sharing credentials. It shifts communication to LINE, WhatsApp, and Microsoft Teams to evade email detection and extend social engineering. Proofpoint reports hundreds to a few thousand messages per campaign, with a focus on remote access for data theft and financial fraud.