The FBI has succeeded in removing the dangerous malware “PlugX”, created with the support of the Chinese government, from 4,258 US computers and networks. This action was taken in collaboration with a French agency, which provided technology to remotely delete the malware. The hacking group named Mustang Panda, which developed this malware, is said to have the support of the Chinese government.
Strict action on Chinese cyber attacks The US federal investigation agency FBI today announced that it has successfully removed dangerous Chinese malware from 4,258 US computers and networks. This malware, known as “PlugX”, was developed by the China-backed hacking group Mustang Panda.
According to the FBI, the “Mustang Panda” group had been using this malware since 2014 to infiltrate the computer systems of US citizens, European and Asian governments, business institutions, and Chinese dissident groups. The main purpose of this malware was to steal sensitive information from the infected computer and control the system.
How does the malware work?
The “PlugX” malware uses a Command-and-Control (C2) server to connect itself to an infected computer. This server can contact the infected computer and send it various commands. One of the important commands was ‘Self-Delete’, which gives the malware the ability to delete itself.
The FBI got this technology from a French law enforcement agency, which had gained control of a C2 server that could remotely send commands to the infected system. In this process, the FBI successfully attempted to send the “Self-Delete” command as soon as the infected computers were connected to the Internet.
Evidence linked to China and Mustang Panda’s network
According to the FBI report, the support of the Chinese government has been found behind this cyber attack. Mustang Panda was given financial assistance by the Chinese government to develop an advanced version of “PlugX”. This group was using this malware to steal sensitive data and infect systems for a long time.
The FBI said that information about this malware was present for years, but many Windows computer owners were not aware of it.
Big contribution to national security
This action of the FBI is considered an important step not only for American cyber security but also for global cyber security. Experts believe that such cyber attacks conducted by China may increase further in the coming times.
Cyber security expert John Miller says, “China’s cyber operations are highly sophisticated and dangerous. These types of actions send a message that such attacks will not be ignored.”
Impact on cyber security: This incident underlines the importance of global cooperation in cyber security. The technical partnership between France and the US is an example of this.
China’s statement: However, the Chinese government has rejected these allegations and called it “political propaganda”.
History of PlugX: The PlugX malware first appeared in 2008 and has been made more sophisticated over time.
This news not only highlights the seriousness of China’s growing cyber attacks, but also shows that effective solutions to such threats are possible through international cooperation.
