New Threat Actor OP-512 Deploys Custom Web Shell on Microsoft IIS Servers5. June 2026CybersecurityThreat group OP-512 is deploying proprietary web shells on IIS systems, presumed to be for espionage purposes with a Chinese nexus. Share on: