The China-linked Mustang Panda cyber espionage group is suspected to have targeted a government entity in the Philippines with cyber attacks, marking another point of contention in the nations’ South China Sea dispute. Palo Alto Networks Unit 42 attributed three campaigns from August 2023 to Mustang Panda. The campaigns used legitimate software to sideload malicious files and impersonate Microsoft network traffic.
GuidePoint warns of Python backdoor used in ransomware
GuidePoint Security identified a threat actor using a Python-based backdoor to persistently access breached endpoints and release RansomHub encryptors across compromised networks. The backdoor was