Chinese cybersecurity firm QiAnXin XLab has discovered a new malware, named Glutton, which is suspected to be linked to the Chinese state-sponsored group, Winnti. Glutton has been used against multiple countries, accessed through PHP frameworks and known for targeting other cyber criminals. Despite showing similarities to Winnti’s tool PWNLNX, the lack of stealth techniques indicates it may still be in development.
PHP backdoor looks to be work of Chinese-linked APT group
Chinese cybersecurity researchers have uncovered a PHP backdoor, Glutton, believed to be from persistent threat goup Winnti. The malware has been found in China, the
