A sophisticated remote access Trojan dubbed Hacker Door has appeared in active attacks. Researchers at Cylance say it shares many similarities to a 2004 backdoor of the same name that was last updated in 2005. The new Hacker Door contains a backdoor and rootkit components. Researchers say it is largely undocumented malware and has seldom been seen in the wild. It appears to be used by Winnti, a Chinese advanced persistent threat group, researchers say. The group is targeting the aerospace industry, the researchers discovered.”]
Source: https://www.darkreading.com/attacks-breaches/-hacker-door-backdoor-resurfaces-as-rat-a-decade-later