A new cyber espionage group named Gelsemium has been linked to asupply chain attack targeting the NoxPlayerAndroid emulator that was disclosed earlier this year. The findings come from a systematic analysis of multiple campaigns undertaken by the APT crew, with evidence of the earliest attack dating back all the way to 2014 under the codenameOperation TooHashbased on malware payloads