On January 15, someone registered the encrypted email address I-SOON@proton.me. A month later, on February 16, the person began uploading around 570 mostly Chinese-language files to the GitHub software platform. It is not known who is behind the account. Where the data comes from now seems to be almost certain: it is most likely leaked documents from the Chinese IT security company I-Soon (Auxun). And they provide insight into how the Chinese government uses private companies and hacker groups to attack targets at home and abroad.

SOURCE