Widely attributedUnknown

Calypso

China-nexus APT first identified by Positive Technologies, targeting government organisations across Asia, South America and Eastern Europe using the Calypso RAT alongside EternalBlue, EternalRomance and PlugX malware.

Compare attribution across sources →

Attribution signal

?Score = mentions × confidence weight, summed across all attributed sources. Higher source diversity increases the score.≥ 10 High≥ 3 Moderate< 3 Low

0.2

Low signal strength

Mentions2

Sources2

High conf.0

Last seenMay 2026

First observed

—

Last active

—

Origin

China

Aliases

Techniques

Campaigns

China

TargetsGovernment

RegionsAsiaSouth AmericaEastern Europe

Attribution signals

2 mentions · 2 sources

#1unspecified

Malware

dark-reading

May 2026

#2unspecified

MalwareInfrastructureTTP match

bleepingcomputer

May 2026