China-Linked Mustang Panda Group Launches New Cyberespionage Campaign Targeting Tibetan Community

The China-linked cyberespionnage group Mustang Panda has launched a new cyberespionage campaign targeting the Tibetan community. This campaign employs spear-phishing attacks exploiting Tibet-related topics, such as the 9th World Parliamentarians' Convention on Tibet (WPCT), China's educational policy in the Tibet Autonomous Region (TAR), and a recently published book by the 14th Dalai Lama. Technical details of the attack include the use of PUBLOAD and Pubshell malware.