U.S. and Allies Dismantle Chinese-Backed Malware Operation Targeting Thousands of Computers

The Justice Department and FBI led an international effort to delete PlugX malware used by Chinese state-sponsored hackers to steal information from global victims.

• The U.S. Justice Department and FBI, in collaboration with international partners, removed PlugX malware from over 4,200 infected computers worldwide.
• The malware, developed by Chinese state-sponsored hacking groups Mustang Panda and Twill Typhoon, has been active since at least 2014.
• PlugX was used to infiltrate systems in the U.S., Europe, Asia, and among Chinese dissident groups, stealing sensitive data and compromising security.
• French law enforcement and cybersecurity firm Sekoia.io played a key role in identifying and enabling the deletion of the malware without harming legitimate computer functions.
• The operation underscores growing international cooperation to counter cyber threats, with the FBI continuing investigations into Mustang Panda’s activities.

6 Articles

TechCrunch The Verge U.S. Department of Justice One America News Network U.S. Department of Justice