As soon as considered dormant, the China-aligned group has additionally been noticed utilizing the privately-sold ShadowPad backdoor for the primary time
27 Mar 2025
The FamousSparrow APT group has infiltrated a commerce group within the monetary sector in the US, a analysis institute in Mexico, and a governmental establishment in Honduras, in keeping with new ESET analysis.
Whereas helping one of many affected entities with the remediation of the assault, ESET’s consultants discovered that the China-aligned cyberespionage outfit has hit its targets with two beforehand undocumented variations of their flagship backdoor known as SparrowDoor. Importantly, the group was additionally noticed utilizing the ShadowPad backdoor for the primary time.
ESET analysis additionally reveals that FamousSparrow will need to have been exhausting at work creating its toolset between 2022 and 2024, which proves that the group didn’t stop its operations a number of years in the past, as had beforehand been thought.
What else is there to know in regards to the group’s current techniques, strategies, and procedures? Study from ESET Chief Safety Evangelist Tony Anscombe within the video and ensure to learn the total blogpost.
