HORDE PANDA is a China-based targeted intrusion adversary with a likely intelligence collection mission. HORDE PANDA has been active since at least mid-2023, and the adversary’s operations primarily focus on entities in the telecommunications sector in South Asia. HORDE PANDA leverages several shared China-nexus malware families, including KEYPLUG, ShadowPad, Proxip, and PlugX. The adversary also ...
Contact our team about
IOCs for this adversary