Forwarded from Pegasus NSO & other spyware
Evasive Panda leverages Monlam Festival to target Tibetans | ESET
#EvasivePanda (also known as #BronzeHighland and #Daggerfly)
#APT #Trojan #Tibet
ESET researchers discovered a
#cyberespionage campaign that, since at least September 2023, has been victimizing Tibetans through a targeted watering hole, and a supply-chain compromise to deliver trojanized installers of Tibetan language translation software. The attackers aimed to deploy malicious downloaders for Windows and macOS to compromise website visitors with MgBot and a backdoor that, to the best of our knowledge, has not been publicly documented yet; we have named it
#Nightdoor.#EvasivePanda (also known as #BronzeHighland and #Daggerfly)
is a Chinese-speaking APT group, active since at least 2012. ESET Research has observed the group conducting cyberespionage against individuals in mainland China, Hong Kong, Macao, and Nigeria. Government entities were targeted in Southeast and East Asia, specifically China, Macao, Myanmar, The Philippines, Taiwan, Vietnam,China and Hong Kong, India, and Malaysia
#APT #Trojan #Tibet