Chinese Cyberespionage Group Lotus Panda Targets Southeast Asian Organizations

The Chinese cyberespionnage group Lotus Panda conducted a campaign to compromise several organizations in an unnamed Southeast Asian country between August 2024 and February 2025. Targets included a government ministry, an air traffic control organization, a telecommunications operator, and a construction company, according to a report by the Symantec Threat Hunter team. The campaign utilized browser hijacking and side-loading malware techniques to infiltrate the victims' systems.