Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL Backdoor

Tuesday, 30 December 2025

Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL Backdoor

iT4iNT SERVER The Chinese hacking group known as Mustang Panda has leveraged a previously undocumented kernel-mode rootkit driver to deliver a new variant of backdoor dubbed TONESHELL in a cyber attack detected in mid-2025 targeting an unspecified entity in Asia.
The findings come from Kaspersky, which observed the new backdoor variant in cyber espionage campaigns mounted by the hacking group targeting VDS VPS Cloud

http://dlvr.it/TQ46Tk

iT4iNT SERVER Pvt Ltd - Dedicated Server, VPS Server , Cloud Server - - Immense Techie Four Internat

Tuesday, 30 December 2025

Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL Backdoor

No comments:

Post a Comment

Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline