67
Technology3h 4m ago

ESET researchers uncovered two previously undocumented Windows variants of SprySOCKS, a backdoor previously known only as a Linux threat.

Archive Window: 7 Days Left

Honduras, Taiwan, Thailand, Pakistan

Who
ESET researchers, FishMonger (also tracked as Earth Lusca, TAG-22, Aquatic Panda, and Red Dev 10)
What
ESET researchers uncovered two previously undocumented Windows variants of SprySOCKS, a backdoor previously known only as a Linux threat.
When
Tue, 16 Jun 2026 09:04:51 GMT · 3h 4m ago
Where
Honduras, Taiwan, Thailand, Pakistan ·
Why
The newly discovered malware variants significantly expand the group's capabilities by introducing Windows-native persistence mechanisms and, in one version, a kernel-level rootkit designed to conceal malicious activity from security tools.
The Frontline Impact

How this affects you

This discovery shows an expansion of capabilities for a known cyberespionage group by adapting their malware for Windows, allowing them to target a broader range of government organizations and potentially evade detection with rootkit technology. The identified targets include several Asian countries and Honduras, indicating a wide geographical reach for this persistent threat.

Story chain

4 events in this thread
  1. Technology2h 42m ago
    Security researchers identified two undocumented Windows backdoors linked to Chinese espionage threat activity targeting government organizations in Asia and Central America.
    Open article
  2. Technology2h 42m ago
    Security researchers spotted two undocumented Windows backdoors linked to Chinese espionage threat activity targeting government organizations in Asia and Central America between 2023 and 2024.
    Open article
  3. Currently Reading3h 4m ago
    ESET researchers uncovered two previously undocumented Windows variants of SprySOCKS, a backdoor previously known only as a Linux threat.
  4. Technology3h 4m ago
    ESET researchers uncovered two previously undocumented Windows variants of SprySOCKS, a backdoor linked to the China-aligned cyberespionage group FishMonger.
    Open article

Verified Sources & Citations