ADVERTISEMENT

Chinese spy group TA416 is back after years of silence, now targeting EU and NATO

The Chinese state-backed threat group TA416 has returned to Europe’s cyber threat landscape after a prolonged lull, bringing with it a more refined and evasive espionage playbook.

eu borders china

EU borders with Chinese flag liquid. Image by Cybernews.

Mayank Sharma
Mayank Sharma Contributor
Apr 3, 2026 Updated: 3 April 2026 2 min read
Ursula von der Leyen, blonde woman, semi-smile, white skin lit up in dark blue light
Ursula von der Leyen, President of the European Commission. M. Lenhardt/picture alliance/Getty.

Smarter infection chain

phishing_email_greenland
TA416 Greenland-themed web bug phishing email campaign from January 2026. ProofPoint.
ADVERTISEMENT
shifting_insection_chains
Evolving TA416 infection chain from September 2025 to March 2026. Source: ProofPoint.
jurgita justinasv Izabelė Pukėnaitė vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.

ADVERTISEMENT