Or at least trying to. Born in China and presumed to work for the chinese dictatorship hacker group APT20 has, over the course of the last few years, successfully performed series of cyber attacks. The group operated (operates?) in Brazil, Western Europe and USA. APT20’s targets were mainly the micro economy sector – small and medium ventures.
Interestingly, APT20 has seemingly devised a way around the 2FA protection. It is believed that figured out a way to fool the mechanism responsible for checking the verification token’s genuineness.
If you want to learn more about these scumbags, read the report composed by the Dutch cyber security company Fox-IT.