GRUzzly Bear :verified: · @1nternaut
239 followers · 107 posts · Server infosec.exchangeRT @Cyber_O51NT@twitter.com
#RedDelta Targets European Government Organizations and Continues to Iterate Custom PlugX Variant https://www.recordedfuture.com/reddelta-targets-european-government-organizations-continues-iterate-custom-plugx-variant
Julian-Ferdinand Vögele · @julianferdinand
536 followers · 587 posts · Server infosec.exchange
New research from Insikt Group has observed activity attributed to likely Chinese state-sponsored threat activity group #RedDelta using a customized variant of the #PlugX backdoor (heavily customized for anti-analysis for detection evasion). More in the report: https://www.recordedfuture.com/reddelta-targets-european-government-organizations-continues-iterate-custom-plugx-variant
avallach · @xorhex
160 followers · 162 posts · Server infosec.exchange
#RedDelta / #MustangPanda have expanded to using ISO files in addition to RAR and ZIP files.
Also, the config decryption key changed to jOh752oCI for their more recent variants of #plugx.
https://go.recordedfuture.com/hubfs/reports/cta-2022-1223.pdf
#reddelta #MustangPanda #plugx
ITSEC News · @itsecbot
687 followers · 32461 posts · Server schleuss.online
Hackers Continue Cyberattacks Against Vatican, Catholic Orgs - The China-linked threat group RedDelta has continued to launch cyberattacks against Catholic insti... https://threatpost.com/hackers-continue-cyberattacks-against-vatican-catholic-orgs/159306/ #catholicdioceseofhongkong #remoteaccesstrojan #statesponsoredhack #vulnerabilities #chinesehackers #spearphishing #websecurity #cyberattack #catholic #reddelta #vatican #china #plugx #rat
#rat #plugx #china #vatican #reddelta #catholic #cyberattack #websecurity #spearphishing #chinesehackers #vulnerabilities #statesponsoredhack #remoteaccesstrojan #catholicdioceseofhongkong