Chinese Hackers Targeting Russian Military Personnel with Updated PlugX Malware


Level 5
Thread author
Mar 13, 2022
A China-linked government-sponsored threat actor has been observed targeting Russian speakers with an updated version of a remote access trojan called PlugX.

Secureworks attributed the attempted intrusions to a threat actor it tracks as Bronze President, and by the wider cybersecurity community under the monikers Mustang Panda, TA416, HoneyMyte, RedDelta, and PKPLUG.

  • Like
Reactions: Correlate