PUBLOAD and Pubshell Malware Used in Mustang Panda's Tibet-Specific Attack
Briefly

A recent cyber espionage campaign attributed to the China-linked threat actor Mustang Panda is targeting the Tibetan community through sophisticated spear-phishing attacks. IBM X-Force reported that the attackers are using themes related to Tibetan political events, including the 9th World Parliamentarians' Convention on Tibet and publications by the Dalai Lama. The campaign involves distributing malware called PUBLOAD via deceitful documents resembling benign content. The attacks reflect an ongoing interest in geopolitical issues by Mustang Panda and highlight a concerning trend of customized cyber threats against specific communities.
The use of Tibet-themed lures in recent cyber attacks illustrates the increasingly sophisticated methods employed by Mustang Panda to target specific communities and topics.
The Mustang Panda's ongoing cyber espionage campaign reflects the group's focus on geopolitical issues, using tailored spear-phishing tactics to exploit vulnerabilities within the Tibetan community.
Read at The Hacker News
[
|
]