As soon as considered dormant, the China-aligned group has additionally been noticed utilizing the privately-sold ShadowPad backdoor for the primary time
27 Mar 2025
The FamousSparrow APT group has infiltrated a commerce group within the monetary sector in america, a analysis institute in Mexico, and a governmental establishment in Honduras, in keeping with new ESET analysis.
Whereas helping one of many affected entities with the remediation of the assault, ESET’s consultants discovered that the China-aligned cyberespionage outfit has hit its targets with two beforehand undocumented variations of their flagship backdoor referred to as SparrowDoor. Importantly, the group was additionally noticed utilizing the ShadowPad backdoor for the primary time.
ESET analysis additionally reveals that FamousSparrow should have been laborious at work creating its toolset between 2022 and 2024, which proves that the group didn’t stop its operations just a few years in the past, as had beforehand been thought.
What else is there to know in regards to the group’s latest techniques, methods, and procedures? Study from ESET Chief Safety Evangelist Tony Anscombe within the video and ensure to learn the complete blogpost.
