APT-C-60 launches cyber attack on Japan using phishing emails and malware

A cyber-attack by the group APT-C-60 has been detected, targeting organizations in Japan and East Asia. The attack, first identified in August 2024, uses phishing emails disguised as job applications to deliver malware via Google Drive links. The attack begins with a phishing email that downloads a malicious file. This file executes a backdoor malware known as SpyGrace, which connects to legitimate services for further instructions and maintains persistence on infected systems. This campaign highlights the risks of cybercriminals exploiting trusted platforms. Organizations are advised to monitor recruitment channels and scrutinize unsolicited links to reduce potential threats.