NASA personnel hit by Chinese phishing campaign

NASA personnel have fallen victim to a Chinese-attributed phishing campaign designed to harvest credentials for U.S. defense software platforms. The operation used social engineering to target employees with potential access to classified or sensitive defense systems, according to reporting from April 24. The breach highlights the persistent targeting of aerospace and defense sector personnel as an initial access vector, creating opportunities for lateral movement into contractor networks and classified programs.