"Python-Based Malware Slithers Into Systems via Legit VS Code"

"Mustang Panda," a Chinese Advanced Persistent Threat (APT) group, is suspected of being behind an ongoing sophisticated cyber espionage campaign. It involves malicious emails, and the use of Visual Studio Code (VS Code) to spread Python-based malware, which gives attackers persistent remote access to infected machines. The Cyble Research and Intelligence Lab (CRIL) discovered the campaign spreading a .lnk file posing as a legitimate setup file to download a Python distribution package. It is actually used to run a malicious Python script. This article continues to discuss the cyber espionage attack that sets up persistent remote access to victim machines.

Dark Reading reports "Python-Based Malware Slithers Into Systems via Legit VS Code"

Submitted by grigby1

Submitted by Gregory Rigby on