New China-Linked APT Group 'GopherWhisper' Targets Mongolia with Go-Based Malware

ESET researchers identified a new China-linked advanced persistent threat (APT) group, tracked as GopherWhisper, targeting government institutions in Mongolia. The group employs a suite of Go-based malware, including loaders and backdoors, as part of its attack arsenal. No specific dates, CVE IDs, or technical indicators (e.g., hashes, IP addresses) were disclosed in the report. The campaign focuses on compromising Mongolian entities, though the exact impact or data accessed remains unspecified. The discovery highlights ongoing cyberespionage activity attributed to Chinese state-aligned actors. The tools used are primarily written in the Go programming language, suggesting a focus on cross-platform flexibility.