June 15, 2026
Spyware got a checkup
PRC-linked spies hid inside medical and military networks for more than a year
Spies lurked in hospital and military systems for a year, and commenters are furious nobody noticed
TLDR: Suspected Chinese spies reportedly hid for over a year inside North American medical and military research systems, stealing emails and sensitive research. Commenters are split between mocking the absurd details and raging that critical hospitals and labs seem dangerously underprotected.
The big mood in the comments? Pure disbelief mixed with gallows humor. Readers were stunned that suspected Chinese state spies reportedly sat inside North American medical and military research networks for more than a year, quietly grabbing emails and sensitive data. The detail that really sent people into a spiral was the weird shopping list of targets — from drone tech to Chikungunya, a mosquito-borne virus. One camp called it terrifying proof that hospitals and research groups are now front-line targets, not boring back-office places. Another camp was less shocked and more exhausted: of course attackers went after the soft spots.
The biggest argument was over blame. Some commenters dragged the organizations for leaving internet-facing research systems exposed, basically saying, "Why is important medical data hanging out where it can be poked from outside?" Others pushed back, saying universities, hospitals, and public health groups are underfunded, overstretched, and expected to defend themselves like intelligence agencies. That sparked the usual online food fight: "this is negligence" versus "this is what happens when critical institutions are run on shoestring budgets."
And yes, the internet found the comedy. The malware name InfiniteRed got compared to a rejected energy drink, while the bizarre email rule routing messages to an account named BebitaBarefoot774 had commenters absolutely howling. The joke-making didn’t hide the real fear, though: people kept coming back to the same chilling takeaway — if spies can quietly sift through medical research and military health inboxes for a year, what else is sitting unseen right now?
Key Points
- •Google says the PRC-linked espionage group UNC6508 stayed hidden in multiple North American medical and military research networks for more than a year.
- •The campaign began by exploiting externally facing REDCap servers, with the earliest known intrusion dating to September 2023.
- •Attackers deployed custom malware called InfiniteRed to maintain persistence, harvest REDCap credentials, and run a backdoor on page loads.
- •Stolen credentials were used to access administrator accounts and internal networks, after which the attackers created content compliance rules to exfiltrate targeted emails.
- •The attackers searched for defense- and technology-related communications as well as medical research topics, including Chikungunya.