Since 2014, Mustang Panda has used PlugX to secretly infiltrate thousands of computers worldwide, stealing sensitive information and controlling infected devices without their owners’ knowledge.
The attacker deployed a variant of the PlugX cyberespionage toolset previously associated with Chinese APT groups against a ...
Symantec found that tools previously only used by Chinese nation-state espionage actors were deployed in a ransomware attack ...
There has always been some level of overlap between these two groups, but it has become more pronounced in recent years. On ...
Update 2/18/25: Added ESET's statement to the end of the article. The Chinese APT hacking group "Mustang Panda" has been spotted abusing the Microsoft Application Virtualization Injector utility ...