Advertisement
CRITICAL
Threat Intel
Chinese APT Leverages PlugX & ShadowPad with Cloud C2 for Mongolian Espionage
A Chinese state-sponsored APT is exploiting Microsoft Outlook, Slack, Discord, and file.io for C2, deploying PlugX and ShadowPad in espionage operations targeting
Runtime Rebel Intel
4 min read·Apr 23, 2026
TH
CRITICAL
Threat Intel
GopherWhisper APT Abuses Outlook and Slack for Stealthy C2
Newly discovered GopherWhisper APT group uses a Go-based toolkit and legitimate SaaS platforms like Slack and Outlook to conduct espionage against governments.
Runtime Rebel Intel
3 min read·Apr 23, 2026