From gbhackers.com
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhvku6J1u_jMxdegCatqS3ctJZX8Qbwa_qXV9JcsZ7cyv-ZqDbwBDTRO9V_RC1Hd_rAG73--0dhKYhWEfPju8_L8jDwGQgRnkBZalCTi64CqWRr_uH8zegiEfuWOIBhei3yY2tCfZ3vcRkJY-9BfxOVXcrm4QvKQY7YqlkltpWTPLXQzKVe36wGL1ybZx56/s1600/SEIKO%20Data%20Breach(15)-1.webp)
A cyber attack group – GroundPeony, targeting the Taiwanese government, was discovered in March 2023; it used several tactics, such as tampering with legitimate websites for distributing malware, URL obfuscation, and multi-stage loaders.
Further investigations revealed that a China-nexus attack group was responsible for this attack that used CVE-2022-30190 which was commonly known as Follina. However, the attack group has now been termed as “GroundPeony” by nao-sec.