Security News > 2025 > May > Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization
2025-05-20 09:32
Threat hunters have exposed the tactics of a China-aligned threat actor called UnsolicitedBooker that targeted an unnamed international organization in Saudi Arabia with a previously undocumented backdoor dubbed MarsSnake. ESET, which first discovered the hacking group's intrusions targeting the entity in March 2023 and again a year later, said the activity leverages spear-phishing emails using
News URL
https://thehackernews.com/2025/05/chinese-hackers-deploy-marssnake.html
Related news
- Chinese FamousSparrow hackers deploy upgraded malware in attacks (source)
- Chinese Hackers Abuse IPv6 SLAAC for AitM Attacks via Spellbinder Lateral Movement Tool (source)
- Chinese hackers behind attacks targeting SAP NetWeaver servers (source)
- New npm attack poisons local packages with backdoors (source)
- New SparrowDoor Backdoor Variants Found in Attacks on U.S. and Mexican Organizations (source)
- Hackers Repurpose RansomHub's EDRKillShifter in Medusa, BianLian, and Play Attacks (source)
- North Korean hackers adopt ClickFix attacks to target crypto firms (source)
- Cisco warns of CSLU backdoor admin account used in attacks (source)
- Russian hackers attack Western military mission using malicious drive (source)
- Chinese snoops use stealth RAT to backdoor US orgs – still active last week (source)