-
Advertisement
US-Venezuela conflict
China

China-linked hackers targeted US agencies with Venezuela-themed phishing: report

Swiss firm says Mustang Panda leveraged US-Venezuela tensions as geopolitical lures in a malware campaign against government-related targets

Reading Time:2 minutes
Why you can trust SCMP
1
China and the US have in recent years increasingly pointed the finger at each other for conducting or sanctioning cyberattacks. Photo: Shutterstock
Xinmei Shenin Washington

A hacker group with links to China recently used Venezuela-themed phishing emails in a malware campaign targeting US government-related entities, as cyberattack campaigns increasingly leverage geopolitical materials, according to Swiss cybersecurity firm Acronis.

A malware campaign has used recent developments between the US and Venezuela as “thematic lures” to attack US government and policy-related entities with a back door that has espionage-focused capabilities, including basic remote tasking and data exfiltration, Acronis said in a report on Thursday.

The firm said that it attributed this activity to a group named Mustang Panda “with moderate confidence” based on certain infrastructural and operational patterns.

Advertisement

While Acronis did not identify Mustang Panda as a Chinese group, global cybersecurity research teams have described it as a China-based cyber threat actor.

It has been active since 2012 and has launched cyberattacks against organisations worldwide deemed adversaries of the Communist Party, according to Singapore-based cybersecurity firm Cyfirma.

Advertisement

The US Department of Justice (DOJ) in January last year called Mustang Panda a hacker group sponsored by the People’s Republic of China.

Advertisement
Select Voice
Choose your listening speed
Get through articles 2x faster
1.25x
250 WPM
Slow
Average
Fast
1.25x