Putter Panda

CVE-2019-12042 - Insecure permissions of the section object Global\PandaDevicesAgentSharedMemory and the event Global\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system ...
5 years ago

10 Best IT Asset Management Tools - 2025 - What is Good?What Could Be Better?Atera can seamlessly service and monitor Linux, Mac, and Windows systems.Sometimes, when deploying an update, patch management will fail.Using an administrator terminal, keep an eye on IT asset activity remotely.The ...
11 months ago Cybersecuritynews.com

Putter Panda - Putter Panda is a Chinese threat group that has been attributed to Unit 61486 of the 12th Bureau of the PLA’s 3rd General Staff Department (GSD). ...
2 years ago Attack.mitre.org Putter Panda

Deep Panda - Deep Panda is a suspected Chinese threat group known to target many industries, including government, defense, financial, and telecommunications. The intrusion into healthcare company Anthem has been attributed to Deep Panda. This group is also ...
2 years ago Attack.mitre.org APT1 APT19 Deep Panda

CVE-2025-34109 - PSEvents.exe in multiple Panda Security products runs hourly with SYSTEM privileges and loads DLL files from a user-writable directory without proper validation. An attacker with low-privileged access who can write DLL files to the monitored ...
7 months ago

Safe shopping this sales season - Whether it's to avoid queuing, save time or simply to avoid the frustration from going to the shop and not finding what you were looking for, online shopping is the most popular shopping method in today's society. That's why we want to give you some ...
2 years ago Pandasecurity.com

Chinese hackers abuse Microsoft APP-v tool to evade antivirus - The Chinese APT hacking group "Mustang Panda" has been spotted abusing the Microsoft Application Virtualization Injector utility as a LOLBIN to inject malicious payloads into legitimate processes to evade detection by antivirus software. ...
1 year ago Bleepingcomputer.com Mustang Panda

CVE-2023-52188 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Russell Jamieson Footer Putter allows Stored XSS.This issue affects Footer Putter: from n/a through 1.17. ...
2 years ago

CVE-2024-8424 - Improper Privilege Management vulnerability in WatchGuard EPDR, Panda AD360 and Panda Dome on Windows (PSANHost.exe module) allows arbitrary file delete with SYSTEM permissions. This issue affects EPDR: before 8.00.23.0000; Panda AD360: before ...
1 year ago Tenable.com

China State-Sponsored Spies Hack Site and Target User Systems in Asia - Users of a Tibetan language translation app and website visitors to a Buddhist festival were compromised by a focused watering-hole malware connected to a Chinese threat group. According to recent data from ESET, the so-called Evasive Panda hacking ...
2 years ago Cysecurity.news GALLIUM

New Chinese Smishing Kit Dubbed 'Panda Shop' Steal Google, Apple Pay & Credit Card Details - A sophisticated new smishing kit dubbed “Panda Shop” has emerged from China, enabling cybercriminals to steal financial data including Google Pay, Apple Pay, and credit card details. The kit also supports OTP (One-Time Password) ...
10 months ago Cybersecuritynews.com

Scarlet Mimic - Scarlet Mimic is a threat group that has targeted minority rights activists. This group has not been directly linked to a government source, but the group's motivations appear to overlap with those of the Chinese government. While there is some ...
2 years ago Attack.mitre.org Putter Panda Scarlet Mimic

CVE-2021-26750 - DLL hijacking in Panda Agent <1.16.11 in Panda Security, S.L.U. Panda Adaptive Defense 360 < 8.0.17 allows attacker to escalate privileges via maliciously crafted DLL file. ...
4 years ago

CVE-2016-3943 - Panda Endpoint Administration Agent before 7.50.00, as used in Panda Security for Business products for Windows, uses a weak ACL for the Panda Security/WaAgent directory and sub-directories, which allows local users to gain SYSTEM privileges by ...
4 years ago

CVE-2018-0644 - Buffer overflow in Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-client2) 1:1.4.9+p41-u4jma1 and earlier, Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 5.0.0 (panda-client2) 1:2.0.0+p48-u4jma1 and earlier, and Ubuntu16.04 ...
7 years ago

Aquatic Panda - Aquatic Panda is a suspected China-based threat group with a dual mission of intelligence collection and industrial espionage. Active since at least May 2020, Aquatic Panda has primarily targeted entities in the telecommunications, technology, and ...
2 years ago Attack.mitre.org Aquatic Panda

Mustang Panda - Mustang Panda is a China-based cyber espionage threat actor that was first observed in 2017 but may have been conducting operations since at least 2014. Mustang Panda has targeted government entities, nonprofits, religious, and other non-governmental ...
2 years ago Attack.mitre.org Mustang Panda

CVE-2025-60050 - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Panda panda allows PHP Local File Inclusion.This issue affects Panda: from n/a through <= 1.21. ...
2 months ago

CVE-2007-1673 - unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file. ...
7 years ago

New Koske Linux malware hides in cute panda images - Researchers from cybersecurity company AquaSec analyzed Koske and described it as "a sophhisticated Linux threat." Based on the observed adaptive behavior, the researchers believe that the malware was developed using large language models (LLMs) ...
7 months ago Bleepingcomputer.com

Chinese Murky Panda Attacking Government Entities with Sophisticated Cyber Espionage - Chinese cyber espionage group Murky Panda has been actively targeting government entities with advanced malware and sophisticated attack techniques. This group, known for its stealth and persistence, employs custom malware strains to infiltrate ...
6 months ago Cybersecuritynews.com CVE-2023-XXXXX CVE-2024-YYYYY Murky Panda

Murky Panda hackers exploit cloud trust to hack downstream customers - Murky Panda, a sophisticated hacker group, has been exploiting the inherent trust in cloud service providers to infiltrate downstream customers. This attack vector leverages the trusted relationships between cloud vendors and their clients, allowing ...
6 months ago Bleepingcomputer.com Murky Panda

Mustang Panda with SnakeDisk USB Worm - Mustang Panda, a notorious Chinese cyber espionage group, has been observed deploying a new USB worm named SnakeDisk. This malware propagates through USB devices, enabling the threat actors to infiltrate air-gapped networks and steal sensitive ...
5 months ago Cybersecuritynews.com Mustang Panda

Mustang Panda Using New DLL Side-Loading Technique to Evade Detection - Mustang Panda, a known Chinese state-sponsored threat actor, has been observed employing a new DLL side-loading technique to enhance its stealth capabilities. This method involves loading malicious DLLs through legitimate applications, allowing the ...
5 months ago Cybersecuritynews.com Mustang Panda