■■■□□ Abandoned Sogou Zhuyin Update Server Hijacked, Weaponized in Taiwan Espionage Campaign.
An abandoned update server associated with input method editor (IME) software Sogou Zhuyin was leveraged by threat actors as part of an espionage campaign to deliver several malware families, including C6DOOR and GTELAM, in attacks primarily targeting users across Eastern Asia.
https://thehackernews.com/2025/08/abandoned-sogou-zhuyin-update-server.html