From HealthKick to GOVERSHELL: The Evolution of UTA0388’s Espionage Malware

Updated on October 9, 2025

A China-aligned threat actor codenamed UTA0388 has been attributed to a series of spear-phishing campaigns targeting North America, Asia, and Europe that are designed to deliver a Go-based implant known as GOVERSHELL.
“The initially observed campaigns were tailored to the targets, and the messages purported to be sent by senior researchers and analysts from legitimate-sounding, completely…

Read the rest of the story at Read More

Source: The Hacker News

June 20, 2025 Uncategorized

6 Steps to 24/7 In-House SOC Success

July 30, 2025 Uncategorized

Scattered Spider Hacker Arrests Halt Att...

July 16, 2025 Uncategorized

From HealthKick to GOVERSHELL: The Evolution of UTA0388’s Espionage Malware

Related posts

6 Steps to 24/7 In-House SOC Success

Scattered Spider Hacker Arrests Halt Att...

Google AI “Big Sleep” Stops ...

Leave a Comment Cancel reply

Recent News

ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet

Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows

ThreatsDay Bulletin: 0-Days, LinkedIn Spies, Crypto Crimes, IoT Flaws and New Malware Waves

CTM360 Exposes a Global WhatsApp Hijacking Campaign: HackOnChat

New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices

Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt

TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)

Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices

WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide