China-linked Evasive Panda used DNS poisoning to deliver the MgBot backdoor in targeted espionage attacks from 2022 to 2024.

Mustang Panda deployed TONESHELL via a signed kernel-mode rootkit, targeting Asian government networks and evading security ...

The China-linked Mustang Panda APT has been using a kernel-mode rootkit in attacks leading to ToneShell backdoor deployments.

A new sample of the ToneShell backdoor, typically seen in Chinese cyberespionage campaigns, has been delivered through a kernel-mode loader in attacks against government organizations.

Kaspersky has released new research findings on a sophisticated cyber espionage campaign by the Evasive Panda threat actor.

China-linked Evasive Panda is abusing DNS techniques to hide malware traffic, raising new concerns for governments and ...

After asking for help on social media, Bernardo Quintero has managed to locate the creator of the software that, besides infecting the university’s computers in the 1990s, sparked his passion for cybe ...

2025 included a number of monumental threats, from global nation-state attacks to a critical vulnerability under widespread ...

To defend against the new attacks, the researchers advise memory forensics as the number one way of spotting ToneShell infections. They also shared a list of indicators of compromise (IoC) which can ...

Don't believe everything you read on the internet. By now, we can all agree that it's full of fake stuff and AI isn't helping ...

Standing on its hind legs, a red panda eats Christmas treats at Berlin Zoo, Germany, Dec. 8, 2025. How the British royal ...

Don't believe everything you read on the internet. By now, we can all agree that it's full of fake stuff and AI isn't helping ...