Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

A Chinalinked espionage group hid inside North American medical academic and military research networks for more than a year quietly stealing sensitive research and defense email The way in was a backdoor on their REDCap research servers that stole login credentials The exfiltration was the unusual part the attackers rewired the victims own Google Workspace rules to copy any message