67
Technology2h 45m ago

Security researchers spotted two undocumented Windows backdoors linked to Chinese espionage threat activity targeting government organizations in Asia and Central America between 2023 and 2024.

Archive Window: 7 Days Left

Asia, Central America, Honduras, Taiwan, Thailand, Pakistan, Chengdu, China

Who
Eset, FishMonger, iSoon
What
Security researchers spotted two undocumented Windows backdoors linked to Chinese espionage threat activity targeting government organizations in Asia and Central America between 2023 and 2024.
When
Tue, 16 Jun 2026 09:26:58 GMT · 2h 45m ago
Where
Asia, Central America, Honduras, Taiwan, Thailand, Pakistan, Chengdu, China ·
Why
The newly discovered variants are an upgrade of SprySocks, a Linux backdoor tied to the Chinese threat actor tracked as FishMonger or Earth Lusca and hacking contractor iSoon.
The Frontline Impact

How this affects you

A Chinese-linked hacking group has developed advanced Windows malware with kernel-level evasion techniques, allowing it to hide network connections, processes, and files. This upgrade expands the group's ability to conduct long-term intelligence gathering and data theft from government organizations, posing a heightened cyber espionage risk.

Story chain

4 events in this thread
  1. Technology2h 45m ago
    Security researchers identified two undocumented Windows backdoors linked to Chinese espionage threat activity targeting government organizations in Asia and Central America.
    Open article
  2. Currently Reading2h 45m ago
    Security researchers spotted two undocumented Windows backdoors linked to Chinese espionage threat activity targeting government organizations in Asia and Central America between 2023 and 2024.
  3. Technology3h 7m ago
    ESET researchers uncovered two previously undocumented Windows variants of SprySOCKS, a backdoor previously known only as a Linux threat.
    Open article
  4. Technology3h 7m ago
    ESET researchers uncovered two previously undocumented Windows variants of SprySOCKS, a backdoor linked to the China-aligned cyberespionage group FishMonger.
    Open article

Verified Sources & Citations