Chinese APTs are leveraging the Maduro arrest for spear-phishing and the delivery of a new C++ backdoor named LOTUSLITE

LOTUSLITE: Targeted espionage leveraging geopolitical themes

Acronis Threat Research Unit (TRU) observed a targeted malware campaign against U.S. government entities leveraging a politically themed ZIP archive containing a loader executable and a malicious DLL. The executable is used to sideload and execute the DLL, which functions as the primary backdoor, tracked as LOTUSLITE.