The FBI announced it successfully removed a Chinese government-backed malware, PlugX, from over 4,200 infected U.S. computers, highlighting a significant cyber defense breakthrough against foreign threats.
The malware, called PlugX, enables remote access and data exfiltration, operational since 2012 and linked to the Twill Typhoon hacking unit, supported by the Chinese government.
Collaboration with French law enforcement and cyber firm Sekoia.io was crucial for identifying and implementing the commands to delete the malware from numerous victim devices.
Computers infected with PlugX are stealthily programmed to communicate with a command-and-control server, reportedly located in Tokyo, allowing the hackers to efficiently manage their infected network.
Collection
[
|
...
]