It shows how even trusted research tools can be turned into espionage channels. The group grabbed sensitive data on defence projects, AI work and medical studies. For anyone building or using REDCap, it’s a reminder to patch and monitor access.
Google says Chinese hackers used REDCap servers to spy on research labs for over a year
