Blog
Share This Post
[ad_1]
Chinese advanced persistent threat operation RedDelta has deployed attacks involving a new PlugX malware variant against Taiwan, Mongolia, Cambodia, Myanmar, and Vietnam from July 2023 to December 2024, The Hacker News reports.
Attacks by RedDelta — also known as Mustang Panda, Earth Preta, Camaro Dragon, Bronze President, and HoneyMyte — commence with spear-phishing emails using Mongolian flood protection, Taiwanese presidential candidate Terry Gou, and an Association of Southeast Asian Nations meeting as lures that contain malicious MSI, MSC, and LNK files to facilitate PlugX malware compromise, according to an analysis from Recorded Future’s Insikt Group. Further analysis of the intrusions revealed communications between 10 admin servers and two command-and-control servers previously linked to RedDelta. “The group’s Asia-focused targeting in 2023 and 2024 represents a return to the group’s historical focus after targeting European organizations in 2022. RedDelta’s targeting of Mongolia and Taiwan is consistent with the group’s past targeting of groups seen as threats to the Chinese Communist Party’s power,” said researchers.
[ad_2]
Source link
Subscribe To Our Newsletter
Get updates and learn from the best
More To Explore
US Charges Five People Over North Korean IT Worker Scheme
[ad_1] The US has announced charges against five individuals involved in a fake IT workers scheme to funnel funds to
In Other News: VPN Supply Chain Attack, PayPal $2M Settlement, RAT Builder Hacks Script Kiddies
[ad_1] Noteworthy stories that might have slipped under the radar: Korean VPN supply chain attack, PayPal settles with New York
