The actor Microsoft tracks as Silk Typhoon (HAFNIUM) is a nation-state activity group based out of China. Silk Typhoon (HAFNIUM) is known to primarily target healthcare, law firms, higher education, defense contractors, policy think tanks, and non-governmental organization (NGOs) located in the United States, Australia, Japan, and Vietnam. Silk Typhoon (HAFNIUM) focuses on reconnaissance and data gathering by searching open websites for leaked data about the targeted infrastructure, as well using tools like China Chopper and exploiting 0-day vulnerabilities.