#Secureworks

Mustang Panda Targets Asia with Advanced PlugX Variant DOPLUGS

by

February 21, 2024 at 08:15AM Mustang Panda, a China-linked threat actor, has used a variant of the PlugX backdoor called DOPLUGS to target countries in Asia, especially Taiwan and Vietnam. The group is known for well-crafted spear-phishing campaigns and has deployed customized PlugX variants like RedDelta and DOPLUGS since 2018. They also use plugins for … Read more

Median Ransomware Demands Grow to $600K a Pop

by

February 20, 2024 at 03:17PM Ransomware attacks in 2023 saw a 20% increase in median initial ransom demands, reaching $600,000. Sectors such as legal, government, retail, and energy are seeing median demands of $1 million or more. LockBit, BlackCat/ALPHV, and Cl0p were the primary groups carrying out attacks, with LockBit dominating the market. Key takeaways … Read more