GM A.I CyberSecurity Scoring
GM
Company Information
Website:https://www.malaysia.gov.my/
Employees number:2,441
Number of followers:4,321
NAICS:92
Industry Type:Government Administration
Homepage:malaysia.gov.my
GM Risk Score (AI oriented)
Between 700 and 749
GMGovernment Administration
Updated:
22/04/2026
22/04/2026
742/1000
Moderate
Ba
GM Global Score (TPRM)
xxxx
GMGovernment Administration
Score locked

GMModerate
Current Score
742Ba (MODERATE)
01000
1 incidents
-26 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
744
JUNE 2026
744
MAY 2026
743
APRIL 2026
742
MARCH 2026
767
Cyber Attack
05 Mar 2026 • GM
Government entities in Southeast Asia and Europe: Chinese hackers hide malware within Windows and Google Drive to hit government targets
Silver Dragon: Chinese APT41-Linked Group Abuses Google Cloud and Windows Services for Espionage
741
CRITICAL-26
GOV1776817481
Silver Dragon: Chinese APT41-Linked Group Abuses Google Cloud and Windows Services for Espionage
A Chinese state-backed threat group, Silver Dragon, has been conducting cyber-espionage campaigns since at least mid-2024, targeting government entities across Southeast Asia and Europe, including Russia, Poland, Hungary, Italy, Japan, Myanmar, and Malaysia. Linked to the notorious APT41, the group employs sophisticated tactics to evade detection, leveraging legitimate services to conceal its operations.
The campaign begins with phishing emails impersonating official communications or exploits of internet-exposed systems, allowing attackers to infiltrate networks and deploy additional tools. Central to their strategy is GearDoor, a custom backdoor that uses Google Drive as a command-and-control (C2) infrastructure. Infected machines create dedicated Google Cloud folders to exchange heartbeat data and commands disguised as ordinary files, with stolen intelligence exfiltrated through the same channel.
Silver Dragon further obscures its presence by hijacking legitimate Windows services, such as Windows Update, Bluetooth, and .NET Framework utilities, stopping and recreating them to load malicious code under trusted names. This tactic blends malicious activity with routine system noise, extending dwell time in large, complex environments.
Post-exploitation, the group deploys tools like SSHcmd (for remote command execution and file transfers) and Cobalt Strike, a penetration testing framework frequently abused by threat actors. By embedding within trusted cloud services and enterprise systems, Silver Dragon reduces visibility for traditional defenses, complicating detection and response.
Researchers at Check Point Research (CPR) highlight the shift toward abusing legitimate infrastructure, noting that state-aligned actors increasingly exploit cloud platforms and core OS components to maintain persistence. The approach underscores the evolving challenge of identifying subtle, service-based threats in modern cyber-espionage operations.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
FEBRUARY 2026
767
JANUARY 2026
767
DECEMBER 2025
767
NOVEMBER 2025
767
OCTOBER 2025
767
SEPTEMBER 2025
767
AUGUST 2025
767
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for GM ??
What was GM's A.I Rankiteo Cyber Score in June 2026 ??
What was GM's A.I Rankiteo Cyber Score in May 2026 ??
What was GM's A.I Rankiteo Cyber Score in April 2026 ??
What was GM's A.I Rankiteo Cyber Score in March 2026 ??
What was GM's A.I Rankiteo Cyber Score in February 2026 ??
What was GM's A.I Rankiteo Cyber Score in January 2026 ??
What was GM's A.I Rankiteo Cyber Score in December 2025 ??
What was GM's A.I Rankiteo Cyber Score in November 2025 ??
What was GM's A.I Rankiteo Cyber Score in October 2025 ??
What was GM's A.I Rankiteo Cyber Score in September 2025 ??
What was GM's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on GM's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with GM ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view GM's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?