Tag: Mustang Panda
-
A China-linked threat actor known as Mustang Panda has expanded its malware operations by deploying infostealers through an updated CoolClient backdoor. The campaign marks a shift toward broader data collection, allowing attackers to harvest sensitive information directly from compromised systems. Mustang Panda is known for long-running espionage activity rather than financially motivated attacks. The latest…
-
Mustang Panda phishing activity escalated following a recent US operation tied to Venezuelan President Nicolás Maduro. The campaign shows how quickly state-linked threat actors react to geopolitical events. By exploiting breaking news, attackers attempt to increase trust and urgency among targeted recipients. Researchers say the operation focused on US government-related individuals and policy organizations. The…
-
The Mustang Panda kernel rootkit has emerged as part of a sophisticated cyber espionage campaign linked to the China-aligned threat group known as Mustang Panda. Researchers report that the group has integrated a kernel-level rootkit into its ToneShell malware framework to enhance persistence and evade detection. This development marks a significant escalation in the group’s…