China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions

A China-nexus advanced persistent threat (APT) group, tracked as UAT-8302 by Cisco Talos, has been targeting government entities in South America since late 2024 and in southeastern Europe since 2025. The group employs shared APT malware families and custom-made tools during its post-exploitation activities. This campaign highlights the persistent threat posed by state-sponsored actors to governmental organizations across different regions.