The TA416 advanced persistent threat (APT) actor is back with a vengeance. After a month of inactivity, the group was spotted launching spear-phishing attacks with a never-before-seen Golang variant of its PlugX malware loader. TA416, which is also known as Mustang Panda and RedDelta, was spotted in recent campaigns targeting entities associated with diplomatic relations between the Vatican and the Chinese Communist Party. The group was also spotted recently targeting organizations conducting diplomacy in Africa.
Source: https://threatpost.com/ta416-apt-plugx-malware-variant/161505/