Chinese ‘Gallium’ Hackers Using New PingPull Malware in Cyberespionage Attacks
,
A Chinese advanced persistent threat (APT) known as Gallium has been observed using a previously undocumented remote access trojan in its espionage attacks targeting companies operating in Southeast Asia, Europe, and Africa.
Called PingPull, the « difficult-to-detect » backdoor is notable for its use of the Internet Control Message Protocol (ICMP) for command-and-control (C2) communications,
Called PingPull, the « difficult-to-detect » backdoor is notable for its use of the Internet Control Message Protocol (ICMP) for command-and-control (C2) communications,
,
A Chinese advanced persistent threat (APT) known as Gallium has been observed using a previously undocumented remote access trojan in its espionage attacks targeting companies operating in Southeast Asia, Europe, and Africa.
Called PingPull, the « difficult-to-detect » backdoor is notable for its use of the Internet Control Message Protocol (ICMP) for command-and-control (C2) communications,
Called PingPull, the « difficult-to-detect » backdoor is notable for its use of the Internet Control Message Protocol (ICMP) for command-and-control (C2) communications,
, ,
https://thehackernews.com/2022/06/chinese-gallium-hackers-using-new.html