Chinese-linked hackers have been identified as targeting US entities with malware themed around Venezuela. The cyberespionage group, known as Mustang Panda, has been using Venezuela-themed phishing emails to steal data and establish a foothold in US government entities. Cybersecurity firm Acronis uncovered the campaign, which referenced the US seizure of Maduro and his wife, and identified a zip file containing malware that was uploaded on January 5th. The malware, compiled on January 3rd, just hours after the US operation to seize Maduro began, was designed to steal data from targeted computers and enable persistence for ongoing access. Researchers suspect the targets were US government entities and unnamed policy-related entities, based on technical indicators and historical data. The Chinese embassy in Washington has denied any involvement, while the FBI declined to comment. This incident highlights the ongoing threat of cyber espionage and the use of geopolitical themes to exploit vulnerabilities.
