Crucially, Symantec’s threat researchers observed the use of a custom version of the PlugX backdoor previously deployed by a ...

Sekoia.io has found PlugX malware in more than 170 countries. The Mustang Panda group has been conducting infiltration efforts around the world since at least 2014. For instance, cybersecurity ...

The FBI, working with French cops, obtained nine warrants to remotely wipe PlugX malware from thousands of Windows-based computers that had been infected by Chinese government-backed criminals ...

it was said a Chinese state-sponsored threat actor called Twill Typhoon (AKA Mustang Panda) built a custom version of the PlugX malware which can “infect, control, and steal information from ...

the malware components, and a decoy PDF to serve as a diversion. When ESET antivirus products are detected (ekrn.exe or egui.exe) on a compromised machine, Mustang Panda employs a unique evasion ...

a group of hackers sponsored by the People's Republic of China (PRC), known to the private sector as“Mustang Panda” and“Twill Typhoon,” used a version of PlugX malware to infect ...

The Mustang Panda malware also implements an exception handler that executes when ESET applications are not found. In these instances, the malicious code is directly injected into waitfor.exe using ...

a group of hackers sponsored by the People's Republic of China (PRC), known to the private sector as "Mustang Panda" and "Twill Typhoon," used a version of PlugX malware to infect, control ...

The FBI recently used a court order to delete a strain of Chinese-developed malware that can spread to Windows PCs via infected USB drives. The agency shut down a variant of the PlugX malware that ...

The attacks exploited CVE-2024-24919, a Check Point Security Gateway vulnerability, to gain access to targeted networks and deploy the ShadowPad and PlugX malware, two families tightly associated ...