"The attack was discovered by Area 1, an anti-phishing firm based in Redwood City, California, that was founded in 2013 by three former National Security Agency officials. Area 1 researchers said that after hackers copied the cables off of a secure EU network, they had been posting them onto an open internet site, which was where the researchers found them. The company has shared more than 1,100 of the stolen EU cables with The New York Times..." https://www.databreachtoday.com/hackers-intercepted-eu-diplomatic-cables-for-3-years-a-11872
Single server ties hacked diplomatic cables to Chinese cyberattacks worldwide Further investigation into a single C2 has revealed some interesting results May 14, 2019 https://www.zdnet.com/article/single-server-linked-to-hacked-cables-worldwide-chinese-cyberattacks/