Chinese APT Evasive Panda, a cyberespionage group that historically has targeted individuals and government entities in Asian countries, has been observed targeting local members of an international non-governmental organization (NGO) with the MgGot backdoor.
The malware was likely delivered to victims through update channels of popular Chinese software. It allows attackers to harvest large amounts of information from the victims’ Windows machine, such as logging keystrokes, stealing files and clipboard contents, capturing audio, and much more.
Read more: https://www.securityweek.com/chinese-cyberspies-delivered-malware-via-legitimate-software-updates/