State-Backed HazyBeacon Malware Uses AWS Lambda to Steal Data from SE Asian Governments

Governmental organizations in Southeast Asia are the target of a new campaign. The activity is being tracked by Palo Alto Networks Unit 42 under the moniker CL-STA-1020. "CL" stands for "cluster" and "STA" refers to "state-backed motivation