China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

iT4iNT SERVER Cybersecurity researchers have discovered a new campaign attributed to a China-linked threat actor known as UAT-8099 that took place between late 2025 and early 2026.
The activity, discovered by Cisco Talos, has targeted vulnerable Internet Information Services (IIS) servers located across Asia, but with a specific focus on targets in Thailand and Vietnam. The scale of the campaign is currently VDS VPS Cloud


http://dlvr.it/TQfh4v