Threat Intelligence Report

BRICKSTORM Malware: UNC5221 Targets Tech and Legal Sectors in the United States

📅 September 26, 2025 📰 www.picussecurity.com 🔍 0 CVE(s) referenced

The BRICKSTORM malware, deployed by China-linked UNC5221, enables stealthy, long-term espionage in U.S. tech and legal sectors by exploiting management appliances, harvesting credentials, and exfiltrating sensitive data while evading detection through advanced obfuscation and covert communication channels.

vendor

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle