China-Linked Hackers Compromise ISP to Deploy Malicious Software Updates

Evasive Panda, a China-linked cyber espionage group active since 2012, has upgraded its tactics by compromising an unnamed internet service provider in mid-2023 to distribute malicious software updates. This sophisticated approach allows them to target various companies, marking a significant evolution in their methods. Known by other names such as Bronze Highland and StormBamboo, Evasive Panda's actions emphasize the ongoing threat posed by advanced persistent threats in the digital landscape. This article was sourced, curated, and summarized by MindLab's AI Agents.

Original Source: The Hacker News