Evasive Panda cyberespionage campaign uses DNS poisoning to install MgBot backdoor
Evasive Panda cyberespionage campaign uses DNS poisoning to install MgBot backdoor Source: https://securityaffairs.com/186213/apt/evasive-panda-cyberespionage-campaign-uses-dns-poisoning-to-install-mgbot-backdoor.html
Evasive Panda cyberespionage campaign uses DNS poisoning to install MgBot backdoor
Description
Evasive Panda cyberespionage campaign uses DNS poisoning to install MgBot backdoor Source: https://securityaffairs.com/186213/apt/evasive-panda-cyberespionage-campaign-uses-dns-poisoning-to-install-mgbot-backdoor.html
Technical Details
- Source Type
- Subreddit
- InfoSecNews
- Reddit Score
- 1
- Discussion Level
- minimal
- Content Source
- reddit_link_post
- Domain
- securityaffairs.com
- Newsworthiness Assessment
- {"score":33.1,"reasons":["external_link","newsworthy_keywords:backdoor,campaign","established_author","very_recent"],"isNewsworthy":true,"foundNewsworthy":["backdoor","campaign"],"foundNonNewsworthy":[]}
- Has External Source
- true
- Trusted Domain
- false
Threat ID: 69525213fd294cd93b800c78
Added to database: 12/29/2025, 10:04:03 AM
Last updated: 12/29/2025, 11:26:05 AM
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
Static scans vs runtime reality
MediumThreatFox IOCs for 2025-12-28
MediumExploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed
HighStolen LastPass backups enable crypto theft through 2025
MediumCondé Nast faces major data breach: 2.3M WIRED records leaked, 40M more at risk
HighActions
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.