Symantec found a previously unidentified threat actor named Grayling conducting advanced persistent attacks targeting organizations in Taiwan, the Pacific Islands, Vietnam, and the U.S., with a focus on intelligence gathering. Grayling’s modus operandi seems to revolve around exploiting public infrastructures for initial access. This demands a keen eye on network anomalies and a rigorous patch management flow in place.