China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan

A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent. According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial services sectors. The activity entails distributing spear-phishing emails containing ZIP attachments

The report describes Operation Dragon Weave, a China-aligned cyber espionage campaign targeting government, research, academic, technology, and financial sectors in the Czech Republic and Taiwan via spear-phishing emails delivering the Rust-based AdaptixC2 agent (AZUREVEIL) for full remote control and data exfiltration.[1] The campaign uses structured infection chains, DLL side-loading, Azure Blob Storage C2, and extensive post-compromise capabilities, and is part of broader activity by multiple China-affiliated groups using similar tooling.[1] While the article does not mention AI systems directly, threat actors with this level of capability can realistically pivot to abusing AI-enabled services and agents for phishing, persistence, and C2 evasion. CyberSE.AI should treat such state-aligned campaigns as reference threats when red-teaming AI-assisted workflows and monitoring for spear-phishing and malware delivery paths that might be enhanced or automated via generative AI.